SY0-301 · Question #92
Which of the following security strategies allows a company to limit damage to internal systems and provides loss control?
The correct answer is C. Containment strategies. Containment strategies are designed to limit the spread of damage and control losses once a security incident is underway. They stop an incident from worsening while preserving evidence and allowing recovery.
Question
Which of the following security strategies allows a company to limit damage to internal systems and provides loss control?
Options
- ARestoration and recovery strategies
- BDeterrent strategies
- CContainment strategies
- DDetection strategies
How the community answered
(27 responses)- A4% (1)
- C93% (25)
- D4% (1)
Why each option
Containment strategies are designed to limit the spread of damage and control losses once a security incident is underway. They stop an incident from worsening while preserving evidence and allowing recovery.
Restoration and recovery strategies focus on returning systems to normal operation after an incident, not on limiting damage during one.
Deterrent strategies aim to discourage attackers from attempting an attack in the first place, not to limit damage after one begins.
Containment strategies directly address limiting damage to internal systems and controlling loss by isolating affected resources and stopping an incident from spreading. This is a key phase in incident response where the goal is to bound the impact rather than fully recover or deter. Examples include network segmentation, disabling compromised accounts, and quarantining infected systems.
Detection strategies identify that an incident is occurring but do not themselves limit damage or control losses.
Concept tested: Incident response containment strategy
Source: https://csrc.nist.gov/publications/detail/sp/800-61/rev-2/final
Topics
Community Discussion
No community discussion yet for this question.