Which type of control is primarily used to repair the damage and restore resources and capabilities to their prior state following a security incident?
Corrective controls are designed to mitigate the damage caused by an incident or breach by restoring systems to their previous state. They are reactive measures that come into play after a security event has occurred, aiming to reduce the impact and prevent the exploitation of the identified vulnerability in the future.