Which of the following is NOT a control type in SP 800-53 r4?

Enhance your preparation for the Federal IT Security Professional Test. Use quizzes, flashcards, and detailed explanations to ensure success. Stay ahead in the field of IT Security!

Multiple Choice

Which of the following is NOT a control type in SP 800-53 r4?

Explanation:
SP 800-53 Rev 4 groups controls into three broad categories: management, operational, and technical. Management controls cover governance and risk management activities, operational controls handle day-to-day protection such as contingency planning and incident response, and technical controls are implemented through information systems, like access control mechanisms and encryption. Physical protections are not listed as a separate control type; they’re addressed within the Physical and Environmental Protection family. So, Physical is not a control type in this framework, making it the correct choice.

SP 800-53 Rev 4 groups controls into three broad categories: management, operational, and technical. Management controls cover governance and risk management activities, operational controls handle day-to-day protection such as contingency planning and incident response, and technical controls are implemented through information systems, like access control mechanisms and encryption. Physical protections are not listed as a separate control type; they’re addressed within the Physical and Environmental Protection family. So, Physical is not a control type in this framework, making it the correct choice.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy