Which category of controls includes policies, procedures, security awareness training, contingency planning, and disaster recovery plans?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the AP Networking Test. Study with flashcards and multiple choice questions, each question includes hints and explanations. Boost your confidence and get ready for success!

Multiple Choice

Which category of controls includes policies, procedures, security awareness training, contingency planning, and disaster recovery plans?

Explanation:
The main idea here is how security controls are categorized by what they address—governance and human-focused management rather than technology or the physical environment. The items listed—policies, procedures, security awareness training, contingency planning, and disaster recovery plans—are all about guiding behavior, establishing rules, and preparing people and processes to respond to incidents. That makes them administrative controls, which are management-oriented measures used to shape how security is enforced across an organization. Technical controls, by contrast, rely on technology and software or hardware safeguards like encryption, access control software, and firewalls. Physical controls cover the tangible protections in the environment, such as locks, cameras, and security guards. While there’s overlap in risk management, the specific items described fit the administrative, governance-focused category best.

The main idea here is how security controls are categorized by what they address—governance and human-focused management rather than technology or the physical environment. The items listed—policies, procedures, security awareness training, contingency planning, and disaster recovery plans—are all about guiding behavior, establishing rules, and preparing people and processes to respond to incidents. That makes them administrative controls, which are management-oriented measures used to shape how security is enforced across an organization.

Technical controls, by contrast, rely on technology and software or hardware safeguards like encryption, access control software, and firewalls. Physical controls cover the tangible protections in the environment, such as locks, cameras, and security guards. While there’s overlap in risk management, the specific items described fit the administrative, governance-focused category best.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy