Lead Implementer Exam QuestionsBrowse all questions from this exam
Go to Exam

Lead Implementer Exam - Question 6

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custom platform in-house and outsource the payment process to an external provider operating online payments systems that support online money transfers.

Due to this transformation of the business model, a number of security controls were implemented based on the identified threats and vulnerabilities associated to critical assets. To protect customers’ information. Beauty’s employees had to sign a confidentiality agreement. In addition, the company reviewed all user access rights so that only authorized personnel can have access to sensitive files and drafted a new segregation of duties chart.

However, the transition was difficult for the IT team, who had to deal with a security incident not long after transitioning to the e-commerce model. After investigating the incident, the team concluded that due to the out-of-date anti-malware software, an attacker gained access to their files and exposed customers’ information, including their names and home addresses.

The IT team decided to stop using the old anti-malware software and install a new one which would automatically remove malicious code in case of similar incidents. The new software was installed in every workstation within the company. After installing the new software, the team updated it with the latest malware definitions and enabled the automatic update feature to keep it up to date at all times. Additionally, they established an authentication process that requires a user identification and password when accessing sensitive information.

In addition, Beauty conducted a number of information security awareness sessions for the IT team and other employees that have access to confidential information in order to raise awareness on the importance of system and network security.

Based on the scenario above, answer the following question:

After investigating the incident. Beauty decided to install a new anti-malware software. What type of security control has been implemented in this case?

Show Answer
Correct Answer:

Discussion

6 comments
Sign in to comment
WinbeOption: A
Sep 23, 2024

Why is the answer C, and not A?

Everfaithful1Option: C
Oct 8, 2024

C. Corrective Beauty's decision to install new anti-malware software after the security incident is a corrective control. Corrective controls are implemented to respond to and fix issues after a security event has occurred, aiming to mitigate the impact of the incident and prevent recurrence. In this case, the new anti-malware software was installed to address the issue and prevent future breaches by automatically removing malicious code.

AcrisiusOption: C
Jan 19, 2025

The answer is C. The control 8.7 Protection against malware is a #Preventive, #Detective and #Corrective control. So it could be any one of them. In this case consider the classification of security controls Preventative controls to avoid or prevent the occurrence of incidents Detective to search for, detect and identify incidents Corrective to solve the identified incidents and prevent re-occurrence. In this case the IT team identified the incident caused by dodgy malware protection and corrected it by installing new fully managed malware protection. Some of the ways of thinking for PECB can be a bit confusing

Everfaithful1Option: C
Oct 8, 2024

The answer is C because the solution was implemented after an incidence had occurred. Any action taken after an incidence is a corrective action, even if it would prevent a recurrence.

freddyflexOption: C
Feb 27, 2025

C - an accident was present before the anti malware protection

AlphaFocusOption: C
Mar 18, 2025

The Answer is C because an Incidence had already taken place. The Antimalware software installed is to correct the existing incidence and prevent the reoccurrence of it.