Question

During a security architecture design review, Kathleen notices that there is no written process in place to ensure that systems are returned to their normal state after a compromise. How would this control be classified?

A. A technical, corrective control
B. A corrective, compensatory control
C. An administrative, corrective control
D. A physical, detective control

Answer 1

The control described is an 'administrative, corrective control' since it involves a written procedure intended to restore systems to a normal state after a compromise.

Step-by-step explanation:

During a security architecture design review, the lack of a written process to ensure systems are restored to their normal state after a security breach is a concern that Kathleen has noted. The classification of this control would be an administrative, corrective control. Administrative controls are procedures and policies designed to ensure that an organization's processes are following certain standards or protocols. Since the control in question involves creating a written process, which is a procedural measure, it's classified as administrative. Additionally, because this control is aimed at correcting a compromised state, it falls under the category of corrective measures. Corrective controls are intended to remedy vulnerabilities or issues when they occur.