CompTIA^® Security+ Exam Notes : Compare And Contrast Various Types Of Controls

5. Risk Management

5.5 Compare and contrast various types of controls

Various Types of controls:

1. Preventive control: It prevents any security breach from occurring. Aimed at preventing an incident from occurring.

Example

• Security guards at door,
• Proximity cards or bio-metrics at the entrance to the building,
• Change management policy, etc.

2. Detective controls: Detective controls attempt to detect any break-in that has already happened. Aimed at detecting incidents after they have occurred.

Example

• Log monitoring,
• Trend analysis,
• Security audit
• video surveillance systems
• motion detection systems.

3. Corrective controls: Corrective controls attempt to reverse the impact of an incident or problem after it has occurred. Aimed at reversing the impact of an incident.

Example:

• Active IDS. Active intrusion detection systems (IDSs) - IDS detects an intruder and engage systems that block the progression of intrusion.
• Backups and system recovery.

4. Deterrent controls attempt to prevent incidents by discouraging threats. Aimed at discouraging individuals from causing an incident.

Example:

• Cable locks
• Hardware locks

5. Compensating controls: These are alternative controls used when a primary control is not feasible. are when it isn't possible to use the primary control or to enhance a primary control.

Example:

• TOTP (Time-based One Time Password).
• Using Proximity card or a PIN number are examples of Preventive control.

Managerial: Managerial controls are those that are based on overall risk management. These security controls focus on the management of risk or the management of the cybersecurity system. The use of cybersecurity audits is an example of a managerial control

Physical: A physical control is one that prevents specific physical actions from occurring, such as a mantrap prevents tailgating. Physical controls prevent specific human interaction with a system and are primarily designed to prevent accidental operation of something

Compensating: A compensating control is one that is used to meet a requirement when there is no control available to directly address the threat. Fire suppression systems do not prevent fire damage, but if properly employed, they can mitigate or limit the level of damage from fire.

Security+ Cram Notes Contents

• 1. Threats, Attacks and Vulnerabilities
  • 1.1 Given a scenario, analyze and determine the type of malware
  • 1.2 Compare and contrast types of attacks
  • 1.3 Explain threat actor types and attributes
  • 1.4 Explain penetration testing concepts
  • 1.5 Explain vulnerability scanning concepts
  • 1.6 Explain the impact associated with types of vulnerabilities
• 2. Technologies and Tools
  • 2.1 Install and configure network components, both hardware and software-based, to support organizational security
  • 2.2 Given a scenario, use appropriate software tools to assess the security posture of an organization
  • 2.3 Given a scenario, troubleshoot common security issues
  • 2.4 Given a scenario, analyze and interpret output from security technologies
  • 2.5 Given a scenario, deploy mobile devices securely
  • 2.6 Given a scenario, implement secure protocols
• 3. Architecture and Design
  • 3.1 Explain use cases and purpose for frameworks, best practices and secure configuration guides
  • 3.2 Given a scenario, implement secure network architecture concepts
  • 3.3 Given a scenario, implement secure systems design
  • 3.4 Summarize secure application development and deployment concepts
  • 3.5 Summarize cloud and virtualization concepts
  • 3.6 Explain how resiliency and automation strategies reduce risk
  • 3.7 Explain the importance of physical security controls
• 4. Identity and Access Management
  • 4.1 Compare and contrast identity and access management concepts
  • 4.2 Given a scenario, install and configure identity and access services
  • 4.3 Given a scenario, implement identity and access management controls
  • 4.4 Given a scenario, differentiate common account management practices
• 5. Risk Management
  • 5.1 Explain the importance of policies, plans and procedures related to organizational security
  • 5.2 Summarize business impact analysis concepts
  • 5.3 Explain risk management processes and concepts
  • 5.4 Explain disaster recovery and continuity of operations concepts
  • 5.5 Compare and contrast various types of controls
• 6. Cryptography and PKI
  • 6.1 Compare and contrast basic concepts of cryptography
  • 6.2 Explain cryptography algorithms and their basic characteristics
  • 6.3 Given a scenario, install and configure wireless security settings
  • 6.4 Given a scenario, implement public key infrastructure