Which of the following security control is intended to avoid an incident from occurring?
A.
Deterrent
B.
Preventive
C.
Corrective
D.
Recovery
Explanation:
Preventive controls stop actions from taking place. It applies restrictions to what a possible user can do,
whether the user is authorized or unauthorized.
Incorrect Answers:
A: Deterrent controls discourage users from performing actions on a system.
C: Corrective controls deals with correcting a damaged system or process.
D: Recovery controls may be required to restore functionality of the system and organization subsequent to a
security incident taking place.Conrad, Eric, Seth Misenar, Joshua Feldman, CISSP Study Guide, 2nd Edition, Syngress, Waltham, 2012, p.27, 28