1.1 Compare and contrast various types of security controls Flashcards
Control Categories
Technical Controls
Technologies, hardware, software mechanisms that are implemented to manage and reduce risks
Control Categories
Managerial Controls
AKA admin controls
Involves the strategic planning and governance side of security
Control Categories
Operational Controls
Procedures and measures that are designed to protect data on a day to day basis
Mainly governed by internal processes and human actions
Control Categories
Physical Controls
Tangible, real workd measures taken to protect assets like Gates and Security Guards
Control Types
Preventive Controls
Proactive measures implemented to thwart potential secuirty threats or breaches
Control Types
Deterrent Controls
Discourage potential attackers by making the effort seem less appealing or more challenging
Control Types
Detective Controls
Monitor and alert organizations to malicious activities as they occur or shortly thereafer
Control Types
Corrective Controls
Mitigate any potential damage and restore our systems to their normal state
Control Types
Compensating Controls
Alternative measures that are implemented when security controls are not feasible or effective
Control Types
Directive Controls
Guide, inform, or mandate actions
Often rooted in policy or documentation and set the standards for behavior within an organization
