A company's primary file server was encrypted by a ransomware attack, making all files inaccessible. The IT department responded by isolating the server, removing the malware, and successfully restoring the data from the previous night's backup. This restoration of data is an example of which type of security control?
Corrective controls are implemented to reduce the impact and fix issues after a security incident has occurred. In this scenario, restoring the files from a backup is a corrective action because it remediates the damage caused by the ransomware attack. Preventive controls, like firewalls or antivirus software, are designed to stop an incident from happening. Detective controls, such as system logs or intrusion detection systems, are used to identify that an incident is occurring or has occurred. Compensating controls are alternative measures used when a primary control is not feasible.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are examples of corrective controls?
Open an interactive chat with Bash
How do corrective controls differ from preventive controls?
Open an interactive chat with Bash
Why are corrective controls important for business continuity?