CERTIFIED-IN-CYBERSECURITY · Question #188
CERTIFIED-IN-CYBERSECURITY Question #188: Real Exam Question with Answer & Explanation
The correct answer is C: Security Awareness Training. Security Awareness Training is an administrative security control. It is an integral part of any organization's security program and is designed to educate employees on security policies and procedures, as well as how to identify and respond to potential security threats (see ISC
Question
Which of the following is an administrative security control?
Options
- AAccess Control Lists
- BNo entry signs
- CSecurity Awareness Training
- DBadge Readers
Explanation
Security Awareness Training is an administrative security control. It is an integral part of any organization's security program and is designed to educate employees on security policies and procedures, as well as how to identify and respond to potential security threats (see ISC2 Study Guide, Chapter 1, Module 3). An example of Security Awareness Training in action could be a company-wide training session about phishing attacks. Access Control Lists are a type of technical security control used to control access to resources such as files, directories, and network services. Badge Readers and 'No entry' signs are physical security controls used to control physical access to a facility or area.
Topics
Community Discussion
No community discussion yet for this question.