During a risk assessment for a hospital, you discover an out-of-support MRI workstation that cannot be patched or upgraded without voiding the vendor warranty. You propose isolating the device in its own VLAN, applying strict ACLs that only allow DICOM traffic from the radiology server, and continuously monitoring the interface for anomalies. According to information security control categories, what kind of control is this recommendation?
Because the organization cannot implement the preferred control (bringing the operating system up to a supported, fully patched state), the suggested network segmentation and ACLs serve as an alternative safeguard that achieves a similar risk-reduction objective. Such an alternative measure is classified as a compensating control. Detective controls focus on discovering incidents, corrective controls restore systems after an event, and deterrent controls discourage unwanted behavior but do not directly mitigate the technical exposure.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a compensating control?
Open an interactive chat with Bash
What are ACLs and why are they important in this context?
Open an interactive chat with Bash
What is DICOM traffic and why is it allowed here?
Open an interactive chat with Bash
What is a compensating control in information security?
Open an interactive chat with Bash
What is a VLAN, and how does it improve security?
Open an interactive chat with Bash
What are ACLs, and how do they work in mitigating risks?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Information Security and Ethical Hacking Overview
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .