Which of the following is the next step the company should take to ensure any future issues are remediated?

A company’s threat team has been reviewing recent security incidents and looking for a common theme. The team discovered the incidents were caused by incorrect configurations on the impacted systems. The issues were reported to support teams, but no action was taken.

Which of the following is the next step the company should take to ensure any future issues are remediated?
A . Require support teams to develop a corrective control that ensures security failures are addressed once they are identified.
B . Require support teams to develop a preventive control that ensures new systems are built with the required security configurations.
C . Require support teams to develop a detective control that ensures they continuously assess systems for configuration errors.
D . Require support teams to develop a managerial control that ensures systems have a documented configuration baseline.

View Answer

Answer: A

Explanation:

Requiring support teams to develop a corrective control that ensures security failures are addressed once they are identified is the best step to prevent future issues from being remediated. Corrective controls are actions or mechanisms that are implemented after a security incident or failure has occurred to fix or restore the normal state of the system or network. Corrective controls can include patching, updating, repairing, restoring, or reconfiguring systems or components that were affected by the incident or failure.

Reference: https://www.techopedia.com/definition/10339/memory-dump