☁️ 1.1 & 1.2 Flashcards
Covers Section 1.1 and 1.2 of the exam objectives!
What kind of control prevents security events and limits damage?
[1.1]
Security Control
What kind of control handles more detailed tech-based issues?
[1.1] operating system controls, firewalls, anti-virus softaware
Technical Control
What kind of control handles administrative procedures?
[1.1] policy management
Managerial Control
What kind of control is implemented by people?
[1.1] security guards, awareness programs
Operational Control
What kind of control includes fences, locks, badge readers, guard shacks, etc.?
Physical Control
What is an example of a technical preventive control?
Firewall
What is an example of a technical deterrent control?
Splash screen
What is an example of a technical detective control?
System logs
What is an example of a technical corrective control?
Restoring from backups.
What is an example of a technical compensating control?
Blocking instead of patching.
What is an example of a technical directive control?
Having file storage policies.
What is an example of a managerial preventive?
Onboarding policies
What is an example of a managerial deterrent?
Threat of demotion
What is an example of a managerial detective?
Reviewing login reports
What is an example of a managerial corrective?
Creating new policies
What is an example of a managerial and compensating control?
Separating duties
What is an example of a managerial directive control?
Compliance policies
What is an example of an operational preventive?
Having a guard shack.
What is an example of an operational deterrent?
Reception desk
What is an example of an operational detective?
Patrolling the property.
What is an example of an operational corrective?
Contacting law enforcement.
What is an example of an operational and compensating control?
Having multiple security staff.
What is an example of an operational directive control?
Security policy training
What is an example of a physical preventive control?
Door lock
