Scribd
Upload
9 views4 pages

Various Control Types

The document outlines various control types and standards related to governance, risk, and compliance in the context of CompTIA Security+ Certification. It details the stages of control management, including categorization, selection, implementation, and assessment, along with different categories and classifications of controls. Additionally, it emphasizes the concept of 'Defense in Depth' as a strategy for layered security protection against threats.

Uploaded by

vyasmeet2304
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF or read online on Scribd
9 views4 pages

Various Control Types

The document outlines various control types and standards related to governance, risk, and compliance in the context of CompTIA Security+ Certification. It details the stages of control management, including categorization, selection, implementation, and assessment, along with different categories and classifications of controls. Additionally, it emphasizes the concept of 'Defense in Depth' as a strategy for layered security protection against threats.

Uploaded by

vyasmeet2304
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF or read online on Scribd
You are on page 1/ 4
Control Types and Standards of Policies Cates AAA™ Module 5 Governance, Risk & Compliance Vv Vv Risk Management Privacy & Sensitive Data ‘CompTIA Security+ Certification - SYO-601 Training Tee X0y | SSNS Complete Training Course Module 05 | Module 5: Various Control Types — 01/05 Control It's a tactic or strategy to eliminate vulnerability, likelihood of being a target or impact of an exploit Functionality & Effectiveness it's a control and effectiveness of a strategy. Assurance is the validation of functionality and effectiveness. Zao. Security+ Nad Control Management Stages Categorize - Categorize and classify data and systems Select - Adopt controls based on the policy and regulations Supplement - Optimize tallored controls Document - Document all control roadmap and details Implement - implement and Configure Assess — Assess the effectiveness Monitor ~ Monitor and assess effectiveness and operational assurance CompTIA Security+ Certification - SY0-601 Trai Module 5: Various Control Types — 01/05 Control Categories ‘Management Control: Management and Decision Making ‘step plaming, sk management. aud) Operational Control: Controls implemented and executed by people draining, poi. change management) Technical Control: Controls through the use of technology (AC, FU AY iometris ete) EN Security+ Nad Control Classifications Deterrent - Discourages a threat agent from acting Preventive - Preventive control to stop threat agent from being successful ~ Identifies and report and threat agent or action Corrective - Minimizes the impact of threat agent or helps in recovery Defense in Depth its also called layered security having multiple layers of protection. These controls are constantly checked and upgraded based on the latest trends and threat vectors CompTIA Security+ Certification - SY0-601 Training

You might also like