Antivirus softwareis apreventive security controldesigned to stop known malware threats before they can execute or spread within a system. Antivirus solutions use signature-based detection, heuristic analysis, and increasingly behavior-based techniques to block malicious code such as viruses, worms, trojans, and ransomware.
In contrast,IDS (Intrusion Detection Systems)andHIDS (Host-based IDS)are primarilydetective controls. They monitor systems and networks for suspicious activity but do not inherently block threats.SIEMplatforms aggregate and analyze logs for visibility and correlation; they support detection and response but do not directly prevent threats.
According to NIST SP 800-53, preventive controls are designed to stop incidents from occurring, while detective controls identify events after or during occurrence. Therefore, antivirus is the correct choice as it directly prevents threats.
Question 41
Why is identifying roles and responsibilities important in IR planning?
Business Continuity Plans (BCP) focus on sustaining operations using alternative processes and resources during disruptions.
Melody
My experience with Cramkey was great! I was surprised to see that many of the questions in my exam appeared in the Cramkey dumps.
ColbyApr 26, 2026
Yes, In fact, I got a score of above 85%. And I attribute a lot of my success to Cramkey's dumps.
Freddy
I passed my exam with flying colors and I'm confident who will try it surely ace the exam.
AleksanderApr 20, 2026
Thanks for the recommendation! I'll check it out.
Madeleine
Passed my exam with my dream scoreā¦. Guys do give these dumps a try. They are authentic.
ZiggyApr 22, 2026
That's really impressive. I think I might give Cramkey Dumps a try for my next certification exam.
Ari
Can anyone explain what are these exam dumps and how are they?
OceanApr 6, 2026
They're exam preparation materials that are designed to help you prepare for various certification exams. They provide you with up-to-date and accurate information to help you pass your exams.
Fatima
Hey I passed my exam. The world needs to know about it. I have never seen real exam questions on any other exam preparation resource like I saw on Cramkey Dumps.
NiamhApr 17, 2026
That's true. Cramkey Dumps are simply the best when it comes to preparing for the certification exam. They have all the key information you need and the questions are very similar to what you'll see on the actual exam.
Question 43
Which activity is often associated with Disaster Recovery efforts?
Options:
A.
Running anti-malware
B.
Vulnerability scanning
C.
Zero-day exploits
D.
Employees returning to the primary production location
Disaster Recovery includes restoring systems and returning operations to normal, which may involve staff moving back to the primary site after temporary relocation.
