While conducting an initial security review of a SaaS customer-relationship management platform, you advise the client to turn on detailed API audit logs that generate real-time alerts when large data exports occur. Within the information security control taxonomy, how should this logging and alerting capability be classified?
Audit logging does not block an action; instead, it observes activity and raises an alert so that a potential incident can be investigated. Because the function is implemented in software on the SaaS platform rather than through policies or physical barriers, it is considered a technical (logical) control. Controls that observe and report rather than prevent or repair are detective in nature. By contrast, preventive controls attempt to stop an event from occurring, corrective controls aim to restore conditions after an incident, and physical deterrent controls involve hardware or environmental mechanisms such as locks or lighting.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the difference between a detective control and a preventive control?
Open an interactive chat with Bash
Why is API audit logging considered a technical control?
Open an interactive chat with Bash
How do real-time alerts improve security in a SaaS platform?
Open an interactive chat with Bash
What is the role of detective controls in information security?
Open an interactive chat with Bash
What is the difference between technical, administrative, and physical controls?
Open an interactive chat with Bash
Why don't preventive controls classify the API audit logs feature?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Information Security and Ethical Hacking Overview
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .