PrepAway - Latest Free Exam Questions & Answers

Which of the following control pairings include: organi…

Which of the following control pairings include: organizational policies and procedures, pre-employment
background checks, strict hiring practices, employment agreements, employee termination procedures,
vacation scheduling, labeling of sensitive materials, increased supervision, security awareness training,
behavior awareness, and sign-up procedures to obtain access to information systems and networks?

PrepAway - Latest Free Exam Questions & Answers

A.
Preventive/Administrative Pairing

B.
Preventive/Technical Pairing

C.
Preventive/Physical Pairing

D.
Detective/Administrative Pairing

Explanation:
Preventive administrative controls are management policies and procedures designed to protect against
unwanted employee behavior. This includes separation of duties, business continuity and DR planning/testing,
proper hiring practices, and proper processing of terminations. It also includes security policy, information
classification, personnel procedures, and security-awareness training.
Incorrect Answers:
B: Technical controls, which are also known as logical controls, are software or hardware components, such as
firewalls, IDS, encryption, identification and authentication mechanisms.
C: Physical controls are items put into place to protect facility, personnel, and resources. These include guards,
locks, fencing, and lighting.
D: Detective/Administrative controls include monitoring and supervising, job rotation, and investigations.

http://www.brighthub.com/computing/smb-security/articles/2388.aspx
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 28-33


Leave a Reply