The purpose of a corrective control is to:
A.
reduce adverse events.
B.
indicate compromise.
C.
mitigate impact.
D.
ensure compliance.
Explanation:
Corrective controls serve to reduce or mitigate impacts, such as providing recovery capabilities.
Preventive controls reduce adverse events, such as firewalls. Compromise can be detected by
detective controls, such as intrusion detection systems (IDSs). Compliance could be ensured by
preventive controls, such as access controls.