A compensating control is a security measure implemented to reduce risk when the primary control cannot be applied. If users need access to a high-risk website, enabling threat prevention features on the firewall serves as a compensating control by inspecting and filtering potentially malicious traffic to and from the site.
Configuring a SIEM tool to capture all web traffic: This is an excellent example of a compensating control. If you must allow users to access a high-risk website (perhaps for business reasons like research, even though it's deemed risky), you need to monitor that access very closely. A SIEM (Security Information and Event Management) tool will collect logs and traffic data, allowing for real-time monitoring, correlation of events, and incident response if something malicious occurs due to the access. It doesn't prevent the initial access, but it compensates for the risk by providing enhanced detection and response capabilities.
A compensating control is a security measure that is implemented to mitigate a risk that cannot be eliminated entirely. 1 In this case, blocking the high-risk website on endpoint protection software is a compensating control because it limits user access to the site, even though it may not be the ideal solution.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.SY0-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Fourgehan
Highly Voted 7 months agoKekeee
Most Recent 1 week, 3 days agoGill8024
3 weeks, 5 days agoProudFather
6 months, 1 week ago