For each of these classes, there are four types of controls: Preventive (Deterrent) Detective Corrective...
50.1K
Verified Solution
Link Copied!
Question
Accounting
For each of these classes, there are four types of controls:
Preventive (Deterrent)
Detective
Corrective (Recovery)
Compensating
Please assign the correct Class of Security Control and Type of Control that match with the Security Control Listed below. It might be possible that multiple control classes or Control types could be an answer. It could also be None.
| Security Control | Control Class: A-Administration) T-Technical P Physical) | Control Type P Preventive D Detective CR Corrective CM-Compensating |
| Security Awareness Training |
|
|
| Firewall |
|
|
| Anti-Virus |
|
|
| Hot Site |
|
|
| OS Upgrade |
|
|
| IDS (Intrusion Detection System) |
|
|
| System Monitoring |
|
|
| Backup Generator |
|
|
| System Monitoring |
|
|
| Security Guard |
|
|
| Motion Detector |
|
|
| Vulnerability Mitigation |
|
|
2. Match he correct COBIT domains (
A - Planning and Organization, B - Acquisition and Implementation, C - Delivery and Support, and D - Monitoring and Evaluation.
To the following to the following Control Objectives.
| CONTROL OBJECTIVE | MATCHING COBIT DOMAIN |
| define the information architecture |
|
| assess risks |
|
| manage changes |
|
| ensure continuous service |
|
| assess internal control adequacy |
|
| install and accredit systems |
|
| obtain independent assurance |
|
| ensure compliance with external requirements |
|
| develop and maintain procedures |
|
| define a strategic IT plan |
|
| ensure systems security |
|
| manage the IT investment |
|
| manage human resources |
|
| identify and allocate costs |
|
| provide for independent audit |
|
| educate and train users |
|
| determine the technological direction |
|
3) Write the correct NIST Security Control Class (Technical, Operational, or Management) for the given Security Control families and Identifiers
| IDENTIFIER | FAMILY | CLASS |
| Risk Assessment | RA |
|
| Access Control | AC |
|
| Incident Response | IR |
|
| Maintenance | MA |
|
| Contingency Planning | CP |
|
| Personnel Security | PS |
|
| Media Protection | MP |
|
| Awareness and Training | AT |
|
| System and Services Acquisition | SA |
|
| Audit and Accountability | AU |
|
| Configuration Management | CM |
|
| Program Management | PM |
|
| System and Information Integrity | SI |
|
| Planning | PL |
|
| Identification and Authentication | IA |
|
Get Answers to Unlimited Questions
Join us to gain access to millions of questions and expert answers. Enjoy exclusive benefits tailored just for you!
Membership Benefits:
- Unlimited Question Access with detailed Answers
- Zin AI - 3 Million Words
- 10 Dall-E 3 Images
- 20 Plot Generations
- Conversation with Dialogue Memory
- No Ads, Ever!
- Access to Our Best AI Platform: Flex AI - Your personal assistant for all your inquiries!
Other questions asked by students
StudyZin's Question Purchase
1 Answer
$0.99
(Save $1 )
One time Pay
- No Ads
- Answer to 1 Question
- Get free Zin AI - 50 Thousand Words per Month
Unlimited
$4.99*
(Save $5 )
Billed Monthly
- No Ads
- Answers to Unlimited Questions
- Get free Zin AI - 3 Million Words per Month
*First month only
Free
$0
- Get this answer for free!
- Sign up now to unlock the answer instantly
You can see the logs in the Dashboard.