Questions: Question 87 Not Answered QUESTION A security analyst has identified a compromised system on the network and needs to prevent further damage. The analyst has decided to implement controls to limit the potential damage. Which of the following is an example of a compensating control that the analyst could implement to prevent further damage? ANSWER Disabling the compromised system's network adapter Deleting system files Physically removing the compromised system from the network Shutting down the network Time left: 53:59

Question 87 Not Answered QUESTION A security analyst has identified a compromised system on the network and needs to prevent further damage. The analyst has decided to implement controls to limit the potential damage. Which of the following is an example of a compensating control that the analyst could implement to prevent further damage? ANSWER Disabling the compromised system's network adapter Deleting system files Physically removing the compromised system from the network Shutting down the network Time left: 53:59
Transcript text: Question 87 Not Answered QUESTION A security analyst has identified a compromised system on the network and needs to prevent further damage. The analyst has decided to implement controls to limit the potential damage. Which of the following is an example of a compensating control that the analyst could implement to prevent further damage? ANSWER Disabling the compromised system's network adapter Deleting system files Physically removing the compromised system from the network Shutting down the network Time left: 53:59
failed

Solution

failed
failed

The answer is the first one: Disabling the compromised system's network adapter.

Explanation for each option:

  1. Disabling the compromised system's network adapter: This is a compensating control because it isolates the compromised system from the network, preventing it from communicating with other systems and potentially spreading the compromise. It limits the damage while allowing the system to remain powered on for further analysis and remediation.

  2. Deleting system files: This is not a compensating control. Deleting system files could cause further damage to the system and may result in data loss or system instability. It does not prevent the system from causing further damage to the network.

  3. Physically removing the compromised system from the network: While this action does prevent further damage, it is more of a corrective control rather than a compensating control. It involves physically disconnecting the system, which may not be as immediate or practical as disabling the network adapter.

  4. Shutting down the network: This is not a compensating control. Shutting down the entire network is a drastic measure that affects all systems and users, not just the compromised one. It is not a targeted approach and can cause significant disruption to business operations.

In summary, disabling the compromised system's network adapter is the most appropriate compensating control to prevent further damage while maintaining the ability to analyze and remediate the system.

Was this solution helpful?
failed
Unhelpful
failed
Helpful

Questions asked by other users

failedAnswered
A spinner has 20 equally sized sections, 8 of which are yellow and 12 of which are red. The spinner is spun and, at the same time, a fair coin is tossed. What is the probability that the spinner lands on yellow and the coin toss is heads?
failedAnswered
Factor completely. 10x^3 - 81x^2 - 81x
failedAnswered
Calculate the wavelength, in nanometers, of the spectral line produced when an electron in a hydrogen atom undergoes the transition from the energy level n=7 to the level n=1. λ= nm
failedAnswered
Find the indefinite integral and check the result by differentiation. (Remember the constant of integration.) ∫(7+8/t)^3(8/t^2) dt
failedAnswered
What do we learn about Tybalt from the highlighted passage from Act 1 Scene 1 of Romeo and Juliet?