Control Categories and Classifications 1.2 Flashcards

1
Q

Having multiple overlapping layers of diverse controls and our controls should not be subject to a cascade or domino effect and should maintain independence.

A

Layered Security

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Proactive action taken to cause or encourage a good outcome to occur. They are broad in nature and often used to increase the effectiveness of other controls.

A

Directive controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Aligned with a process that are primarily implemented and executed by people

A

Operational control category

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Minimize the impact of a threat agent or modify or fix a situation

A

Corrective control classification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Implemented using hardware, software, and/or firmware components. Can be native or supplemental

A

Technical control category

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Stop a threat agent from being successful

A

Preventative control classification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Related to risk management, governance, oversight, strategic alignment, and decision making

A

Managerial control categories

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Designed to address physical interactions. Generally related to buildings and equipment

A

Physical control category

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Discourage a threat agent from acting

A

Deterrent control classification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Identify and report a threat agent or action

A

Detective control classification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Controls implemented in lieu of a recommended control that provides equivalent or comparable protection. Can be supplemental in cases where the implemented control does not provide sufficient protection.
Can be shirt term or temporary.

A

Compensating controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly