What type of measure involves the stopping of possible consequences of security incidents?

ISO-IEC-27001 Lead Auditor V1 0 Comments

What type of measure involves the stopping of possible consequences of security incidents?
A . Corrective
B . Detective
C . Repressive
D . Preventive

Answer: C

Explanation:

A repressive measure is a type of measure that involves the stopping of possible consequences of security incidents. A security incident is an event that compromises the confidentiality, integrity, or availability of information assets3. A repressive measure is a measure that aims to prevent or reduce the harm caused by a security incident after it has occurred. Examples of repressive measures include blocking malicious IP addresses, revoking user access rights, isolating infected systems, or restoring data from backups4. Repressive measures are different from preventive measures, which are measures that aim to avoid or reduce the likelihood of a security incident before it occurs. Examples of preventive measures include installing antivirus software, enforcing password policies, encrypting sensitive data, or conducting security awareness training4. Therefore, the correct answer is C.

Reference: ISO/IEC 27000:2022, clause 3.25; Lepide.

Latest ISO-IEC-27001 Lead Auditor Dumps Valid Version with 100 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download ISO-IEC-27001 Lead Auditor PDF     ISO-IEC-27001 Lead Auditor Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments