CRISC Certified in Risk and Information Systems Control – Question197
NIST SP 800-53 identifies controls in three primary classes. What are they? A. Technical, Administrative, and Environmental B. Preventative, Detective, and Corrective C. Technical, Operational, and Management D. Administrative, Technical, and Operational
Correct Answer: C
Explanation:
Explanation:
NIST SP 800-53 is used to review security in any organization, that is, in reviewing physical security. The Physical and Environmental Protection family includes 19 different controls. Organizations use these controls for better physical security. These controls are reviewed to determine if they are relevant to a particular organization or not. Many of the controls described include additional references that provide more details on how to implement them. The National Institute of Standards and Technology (NIST) SP 800-53 rev 3 identifies 18 families of controls. It groups these controls into three classes:
Technical
Operational
Management
Please disable your adblocker or whitelist this site!