nerdexam
ExamsCGRCQuestions#2
(ISC)2(ISC)2

CGRC · Question #2

CGRC Question #2: Real Exam Question with Answer & Explanation

The correct answer is B: Technical. User ID and password systems are classified under technical access controls because they use technology and software to enforce authentication and authorization policies.

Implementation of Security and Privacy Controls

Question

In which type of access control do user ID and password system come under? Response:

Options

  • AAdministrative
  • BTechnical
  • CPower
  • DPhysical

Explanation

User ID and password systems are classified under technical access controls because they use technology and software to enforce authentication and authorization policies.

Common mistakes.

  • A. Administrative access controls are policies, procedures, and guidelines established by an organization, such as security policies or background checks, not direct authentication methods.
  • C. Power is not a recognized type of access control in information security.
  • D. Physical access controls are mechanisms used to restrict access to physical areas, such as locks, fences, security guards, or surveillance cameras.

Concept tested. Types of access controls - technical

Reference. https://csrc.nist.gov/glossary/term/technical-controls

Topics

#Access Control#Technical Controls#Authentication#Passwords

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CGRC PracticeBrowse All CGRC Questions