Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Pecb Discussions
exam questions

Exam Lead Implementer All Questions

View all questions & answers for the Lead Implementer exam
Go to Exam

Exam Lead Implementer topic 1 question 6 discussion

Actual exam question from PECB's Lead Implementer
Question #: 6
Topic #: 1
[All Lead Implementer Questions]

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custom platform in-house and outsource the payment process to an external provider operating online payments systems that support online money transfers.
Due to this transformation of the business model, a number of security controls were implemented based on the identified threats and vulnerabilities associated to critical assets. To protect customers’ information. Beauty’s employees had to sign a confidentiality agreement. In addition, the company reviewed all user access rights so that only authorized personnel can have access to sensitive files and drafted a new segregation of duties chart.
However, the transition was difficult for the IT team, who had to deal with a security incident not long after transitioning to the e-commerce model. After investigating the incident, the team concluded that due to the out-of-date anti-malware software, an attacker gained access to their files and exposed customers’ information, including their names and home addresses.
The IT team decided to stop using the old anti-malware software and install a new one which would automatically remove malicious code in case of similar incidents. The new software was installed in every workstation within the company. After installing the new software, the team updated it with the latest malware definitions and enabled the automatic update feature to keep it up to date at all times. Additionally, they established an authentication process that requires a user identification and password when accessing sensitive information.
In addition, Beauty conducted a number of information security awareness sessions for the IT team and other employees that have access to confidential information in order to raise awareness on the importance of system and network security.
Based on the scenario above, answer the following question:
After investigating the incident. Beauty decided to install a new anti-malware software. What type of security control has been implemented in this case?

  • A. Preventive
  • B. Detective
  • C. Corrective
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Winbe at Sept. 23, 2024, 3:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Everfaithful1
1 month, 2 weeks ago
Selected Answer: C
C. Corrective Beauty's decision to install new anti-malware software after the security incident is a corrective control. Corrective controls are implemented to respond to and fix issues after a security event has occurred, aiming to mitigate the impact of the incident and prevent recurrence. In this case, the new anti-malware software was installed to address the issue and prevent future breaches by automatically removing malicious code.
upvoted 1 times
...
Everfaithful1
1 month, 2 weeks ago
Selected Answer: C
The answer is C because the solution was implemented after an incidence had occurred. Any action taken after an incidence is a corrective action, even if it would prevent a recurrence.
upvoted 1 times
...
Winbe
2 months ago
Selected Answer: A
Why is the answer C, and not A?
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel