I believe that this is what the author of the original question has been trying to confuse the heck out of the unlucky test taker.<br><br>I do see where you are coming from but it's a matter of fact that insurance does not stop an incident from happening and is just looking at the afterwards of the events so I won't say that technically speaking it can be defined as a preventive control. In my eyes it can be at best a recovery or a compensating control. <br>
<br>Here is an interesting discussion on the ISC2 forum: <br><br><a href="http://blog.isc2.org/isc2_blog/2008/06/information-sec.html" target="_blank">http://blog.isc2.org/isc2_blog/2008/06/information-sec.html</a><br><br>
<br>Andrea<br><br><br><div class="gmail_quote">On Wed, Oct 7, 2009 at 5:34 PM, Smith, Luther B. <span dir="ltr"><<a href="mailto:smithlb@mitre.org" target="_blank">smithlb@mitre.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">RE: Insurance<br>
<br>
All prior assessments are correct, but Insurance 'prevents' a financial loss to the insurance policy holder when an event occurs.<br>
<br>
R/<br>
<br>
-Butch Smith-<br>
<br>
<br>
-----Original Message-----<br>
From: <a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a> [mailto:<a href="mailto:cisspstudy-bounces@cccure.org" target="_blank">cisspstudy-bounces@cccure.org</a>] On Behalf Of <a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br>
Sent: Wednesday, October 07, 2009 12:00 PM<br>
To: <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
Subject: cisspstudy Digest, Vol 16, Issue 4<br>
<br>
Send cisspstudy mailing list submissions to<br>
<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<br>
To subscribe or unsubscribe via the World Wide Web, visit<br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
or, via email, send a message with subject or body 'help' to<br>
<a href="mailto:cisspstudy-request@cccure.org" target="_blank">cisspstudy-request@cccure.org</a><br>
<br>
You can reach the person managing the list at<br>
<a href="mailto:cisspstudy-owner@cccure.org" target="_blank">cisspstudy-owner@cccure.org</a><br>
<br>
When replying, please edit your Subject line so it is more specific<br>
than "Re: Contents of cisspstudy digest..."<br>
<br>
<br>
Today's Topics:<br>
<br>
1. Re: Insurance Preventive Control (Andrea Gatta)<br>
<br>
<br>
----------------------------------------------------------------------<br>
<br>
Message: 1<br>
Date: Wed, 7 Oct 2009 15:18:14 +0100<br>
From: Andrea Gatta <<a href="mailto:andrea.gatta@gmail.com" target="_blank">andrea.gatta@gmail.com</a>><br>
To: The CISSP Study Mailing list <<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a>><br>
Subject: Re: [Cisspstudy] Insurance Preventive Control<br>
Message-ID:<br>
<<a href="mailto:89ab1b610910070718l7f01f82bh9954f26d1ea90b1@mail.gmail.com" target="_blank">89ab1b610910070718l7f01f82bh9954f26d1ea90b1@mail.gmail.com</a>><br>
Content-Type: text/plain; charset="windows-1252"<br>
<br>
Another way to look at insurance in the context of the question would be in<br>
terms of what causes it: risk tranfer.<br>
<br>
Risk transfer does not address the ante but just the post of an<br>
event/incident. Moreover, the risk is still there with the insurer. To this<br>
end I can't see how insurance could be defined as preventive controls since<br>
it does not reduce the risk and does not stop the incident from happening.<br>
<br>
In case - I did found a number of references that classify insurance as a<br>
compensatory control.<br>
<br>
Andrea<br>
<br>
On Tue, Oct 6, 2009 at 9:55 PM, Andrea Gatta <<a href="mailto:andrea.gatta@gmail.com" target="_blank">andrea.gatta@gmail.com</a>> wrote:<br>
<br>
> Just thinking loud - a preventive control avoids in part (mitigation) or<br>
> altogether an incident from happening.<br>
><br>
> In the context of the question 'audit logs' is the only control which is<br>
> clearly not preventative in nature.<br>
><br>
> it's a quite a long shot but a recovery control - 'insurance' in this case<br>
> - although not preventative in nature actually shares with preventative<br>
> controls the focus on complete or partial reduction of the damage so that it<br>
> will be as 'it has never happened'.<br>
><br>
> In the context of the question 'insurance' is clearly a distractor which<br>
> introduces that uncertainty that usually causes me to 'overthink' big time<br>
> something that otherwise would be straightforward.<br>
><br>
><br>
> Andrea<br>
><br>
> On Tue, Oct 6, 2009 at 6:09 PM, Holland, Brandon <<a href="mailto:hollandb@frmaint.com" target="_blank">hollandb@frmaint.com</a>>wrote:<br>
><br>
>> Transcender:<br>
>><br>
>> Which measure is NOT considered to be preventative in nature?<br>
>><br>
>> Insurance<br>
>><br>
>> Fire suppression systems<br>
>><br>
>> Redundant communication links<br>
>><br>
>> Audit Logs<br>
>><br>
>> Ok, so I understand Audit Logs are NOT preventative? but how is insuranceconsidered preventative?<br>
>><br>
>> Brandon Holland<br>
>><br>
>> Army Fleet Support<br>
>><br>
>> ITS | Network Services<br>
>><br>
>> Ph: 598-0626<br>
>><br>
>><br>
>> _______________________________________________<br>
>> cisspstudy mailing list<br>
>> <a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
>> <a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
>><br>
>><br>
><br>
-------------- next part --------------<br>
An HTML attachment was scrubbed...<br>
URL: <<a href="http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20091007/09c0652b/attachment-0001.html" target="_blank">http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20091007/09c0652b/attachment-0001.html</a>><br>
<br>
------------------------------<br>
<br>
_______________________________________________<br>
cisspstudy mailing list<br>
<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br>
<br>
End of cisspstudy Digest, Vol 16, Issue 4<br>
*****************************************<br>
<br>
_______________________________________________<br>
cisspstudy mailing list<br>
<a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
</blockquote></div><br>