Section 5.1 Compare and Contrast Controls

Question 1

What do you call security measures for countering and minimizing loss or unavailability of services or apps due to vulnerabilities?

Answer 1

Security controls

Question 2

Safeguards are ________. while countermeasures are ___________?

Answer 2

proactive
reactive

Question 3

What is the functional order of security controls?

Answer 3

Deterrence, Denial, Detection, Delay

Question 4

What category of security controls is policies and procedures defined by an organizations security policy, and other regulations and requirements?

Answer 4

Managerial controls

Question 5

What category of security controls are executed by company personnel during their day-to-day operations? Things like security awareness training, change management, BCP, etc…

Answer 5

Operational controls

Question 6

What category of security controls involve the hardware of software mechanisms implemented by the IT team to reduce risk? Things like firewall rules, antivirus/malware, IDS/IPS, etc…

Answer 6

Technical controls

Question 7

What types of controls are deployed to discourage violation of security policies?

Answer 7

Deterrent Controls

Question 8

What types of controls are deployed to thwart or stop unwanted or unauthorized activity from occurring?

Answer 8

Preventative Controls

Question 9

What types of controls are deployed to discover or detect unwanted or unauthorized activity?

Answer 9

Detective controls

Question 10

What types of controls provide options to other existing controls to aid in enforcement of security policies?

Answer 10

Compensating controls

Question 11

What types of controls modify the environment to return systems to normal after an unwanted or unauthorized activity has occured?

Answer 11

Corrective controls

Question 12

What types of controls can you physically touch?

Answer 12

Physical controls