PrepAway - Latest Free Exam Questions & Answers

Which of the following statements pertaining to these t…

Logical or technical controls involve the restriction of access to systems and the protection of information.
Which of the following statements pertaining to these types of controls is TRUE?

PrepAway - Latest Free Exam Questions & Answers

A.
Examples of these types of controls include policies and procedures, security awareness training,
background checks, work habit checks but do not include a review of vacation history, and also do not
include increased supervision.

B.
Examples of these types of controls do not include encryption, smart cards, access lists, and transmission
protocols.

C.
Examples of these types of controls are encryption, smart cards, access lists, and transmission protocols.

D.
Examples of these types of controls include policies and procedures, security awareness training,
background checks, work habit checks, a review of vacation history, and increased supervision.

Explanation:
Controls can be administrative, logical or technical, and physical.
Administrative controls include policies and procedures, security awareness training, background checks,
work habit checks, a review of vacation history, and increased supervision.
Logical or technical controls involve the restriction of access to systems and the protection of information.
Examples of these types of controls are encryption, smart cards, access control lists, and transmission
protocols.
Physical controls incorporate guards and building security in general, such as the locking of doors, securing
of server rooms or laptops, the protection of cables, the separation of duties, and the backing up of files.
Incorrect Answers:
A: The controls listed in this answer are all administrative controls (including a review of vacation history).
B: Technical controls DO include encryption, smart cards, access lists, and transmission protocols.
D: The controls listed in this answer are all administrative controls.

Krutz, Ronald L. and Russell Dean Vines, The CISSP and CAP Prep Guide: Mastering CISSP and CAP, Wiley
Publishing, Indianapolis, 2007, p. 47


Leave a Reply