Controls

5.7 Compare and contrast various types of controls

  • Technical /Logical

    • Implemented throgh technology

    • May be deterrent, preventive, detective or compensating

    • ex. patching, firewalls, IDS/IPS, Access Controls

  • Management /Administrative

    • Documents policies, procedures, and guidelines

      • Acceptable Use Policy

      • Incident Response Plan

    • Personnel /People

      • Security Operations center

      • Guard

      • Surveillance

  • Operational / Physical

    • Reduces the risk of harm coming to physical property, information, computer systems or other assets

    • ex. Hardenend facilities, Locks, Badges

  • Deterrent

  • Preventive

  • Detective

  • Corrective

  • Compensating

PreviousForensicsNextData Privacy

Last updated