9) Physical Security Flashcards
Security guards and guard dogs are a part of which type(s) of physical security controls?
a) Detective
b) Environmental
c) Preventive
d) Deterrent
a) Detective
c) Preventive
d) Deterrent
Which storage media is least sensitive to temperature, humidity, magnetic fields, and impacts?
a) Floppy disks
b) Optical media
c) Magnetic media
d) Flash media
d) Flash media
The top three safety concerns for an organization are prioritized and one criterion is the relative ease of replacement. The first concern is always ___, followed up with ___, and then ___.
Choose from data, equipment, and people.
people, data, equipment
Deterrent, detective, and preventive security controls, when used in isolation, are not a complete solution. To have a stronger, more complete solution, we need to use ___.
a) defense in depth
b) RAID
c) environmental controls
d) CIA
a) defense in depth
A type of security that is concerned with the protection of people, equipment, and data.
Physical security
The plans we put in place to ensure that critical business functions can continue operations in the event of an emergency.
BCP
BCP is the plans we put in place to ensure that critical business functions can continue operations in the event of an emergency. What does BCP stand for?
Business continuity planning
The plans we put in place in preparation for a potential disaster, and what exactly we will do during and after.
DRP
DRP is the plans we put in place in preparation for a potential disaster, and what exactly we will do during and after. What does DRP stand for?
Disaster recovery planning
The devices, systems, people, and other methods we put in place to ensure our security in a physical sense.
Physical security controls
Name three main types of physical controls.
Deterrent, detective, and preventive
Controls designed to discourage those who might seek to violate our security controls.
Deterrent controls
Controls designed to detect and report undesirable events that are taking place.
Detective controls
Controls designed to physically prevent unauthorized entities from breaching our physical security.
Preventive controls
Data that is unintentionally left behind on a storage device.
Residual data
Name the main considerations for protecting people.
Safety, evacuation plans, administrative controls
Name the main considerations for protecting data.
Availability, residual data, backups
Name the main considerations for protecting equipment.
Equipment and facility repair/replacement
What planning process ensures that critical business functions can continue to operate during an emergency?
Business continuity planning
What planning process ensures that we can respond appropriately during and after a disaster?
Disaster recovery planning
Which of the options below demonstrates all three types of physical security controls: deterrent, detective, and preventive?
a) A burglar alarm
b) A guard dog
c) A locked door
d) A warning sign
e) An employee policy
b) A guard dog
Your company has an office full of expensive computer equipment to protect. You recommend a variety of approaches, including a security guard stationed at the entrance, a high fence around the property, and key card entry to all nonpublic areas. What security concept are you recommending to protect your company’s assets?
Defense in depth
You work for a small company that has just upgraded its data servers. The new servers are up and running, and normal operations have resumed. The company plans to sell its old equipment. What is your primary concern before they auction off the old hardware?
Residual data
