Question

Ellen 84 Which preventive, detective, and/or corrective controls would best mitigate the follow- ing threats? a. An employee's laptop was stolen at the airport. The laptop contained personal in- formation about the company's customers that could potentially be used to commit identity theft. b. A salesperson successfully logged into the payroll system by guessing the payroll supervisor's password. c. A criminal remotely accessed a sensitive database using the authentication credentials (user ID and strong password) of an IT manager. At the time the attack occurred, the IT manager was logged into the system at his workstation at company headquarters.

Answer 1

a) preventive-protect laptop with Pin/ password or biometric locks

corrective- backup of data should be kept to prevent data loss

b) detective- logging in & out timings and matching it with holidays or breaks of supervisor to detect malicious activities

Tracking the computer on which salesperson has logged in. if it is different from supervisor, then tracking down the sales person's computer.

corrective- tracking the changes made on those timings and reversing them

c) preventive- using firewall and updated antivirus

information can also be kept encrypted and the decryption key should only be with the authorised person.

d) preventive- using updated antivirus and firewall