An organization experienced a data breach compromising customer data. Following the incident, the security team implemented measures to restore affected systems and reduce the impact of the breach. Which of the following actions is an example of a corrective control?
Conducting a forensic analysis to determine how the breach occurred.
Restoring data from backups and applying patches to affected systems.
Implementing stronger network firewalls to prevent future breaches.
Displaying warning banners on login screens to deter unauthorized access.
Restoring data from backups and applying patches to affected systems are actions that limit the damage after an incident, making them examples of corrective controls. These steps aim to fix the issues caused by the breach and prevent further impact. Conducting a forensic analysis is a detective control, as it involves identifying how the breach occurred. Implementing stronger network firewalls is a preventive control designed to stop future incidents. Displaying warning banners is a deterrent control meant to discourage unauthorized access.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are corrective controls in cybersecurity?
Open an interactive chat with Bash
What is the difference between corrective, preventive, and detective controls?
Open an interactive chat with Bash
Why are backups important for corrective controls?