Types of Security Controls:
- Preventive: Prevent security violations and enforce various access control mechanisms.
- Detective: Detect security violations.
- Corrective or recovery: Used to restore systems.
- Deterrent: Used to discourage.
- Compensating: Used as an alternative control when the intended controls failed.
- EC-Council; “Certified Ethical Hacker v10”; EC-Council.
- “CISA Review Manual, 26th Edition”