ExpertEasy1 markMultiple Choice
CPA · Question 15 · Area II: Security
Which of the following is a 'preventive' control in the context of network security?
Which of the following is a 'preventive' control in the context of network security?
Answer options:
A.
Firewall rules blocking traffic on port 80.
B.
Intrusion Detection System (IDS) alerts.
C.
Review of server access logs.
D.
Incident response plan execution.
How to approach this question
Classify controls: Preventive (stops it), Detective (spots it), Corrective (fixes it).
Full Answer
A.Firewall rules blocking traffic on port 80.✓ Correct
A
A firewall actively blocks unauthorized traffic based on rules, preventing the threat from reaching the network. IDS and logs merely record the event.
Common mistakes
Confusing IDS (Detective) with IPS (Preventive).
Practice the full CPA ISC Practice Exam
82 questions · hints · full answers · grading
More questions from this exam
Q01A CPA is performing a risk assessment for a client that uses a public cloud provider for its core...HardQ02During a walkthrough of a client's change management process, the auditor notes that developers h...HardQ03A service organization provides a real-time transaction processing platform. The service level ag...HardQ04An auditor is reviewing a SQL query used by the finance team to generate a report of all sales tr...HardQ05A healthcare clearinghouse is preparing for a SOC 2® engagement. They utilize a private cloud dep...Hard