nerdexam
GIAC

GSEC · Question #47

GSEC Question #47: Real Exam Question with Answer & Explanation

The correct answer is A. Prevention controls. Prevention controls are proactive safeguards designed to stop a threat from reaching and exploiting a vulnerability before any incident occurs.

Question

Which of the following is a type of countermeasure that can be deployed to ensure that a threat vector does not meet a vulnerability?

Options

  • APrevention controls
  • BDetection controls
  • CMonitoring controls
  • DSubversive controls

Explanation

Prevention controls are proactive safeguards designed to stop a threat from reaching and exploiting a vulnerability before any incident occurs.

Common mistakes.

  • B. Detection controls identify and alert on threats that have already reached or are actively interacting with a system, rather than blocking them from meeting a vulnerability.
  • C. Monitoring controls observe and record activity over time to identify anomalies, but they do not actively prevent a threat vector from reaching a vulnerable target.
  • D. Subversive controls is not a recognized category in standard security control frameworks such as NIST SP 800-53 or ISO 27001, and has no defined technical meaning in this context.

Concept tested. Security control types - prevention versus detection versus monitoring

Reference. https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GSEC Practice