{"id":328,"date":"2021-01-17T05:31:32","date_gmt":"2021-01-16T17:57:54","guid":{"rendered":"https:\/\/exampracticetests.com\/ISC\/SSCP\/systems-security-certified-practitioner-sscp-question0320\/"},"modified":"2021-01-17T05:44:07","modified_gmt":"2021-01-17T05:44:07","slug":"systems-security-certified-practitioner-sscp-question0320","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/ISC\/SSCP\/systems-security-certified-practitioner-sscp-question0320\/","title":{"rendered":"Systems Security Certified Practitioner &#8211; SSCP &#8211; Question0320"},"content":{"rendered":"<div class=\"question\">Which of the following is NOT a technical control? <br \/><strong><br \/>A.<\/strong> Password and resource management <br \/><strong>B.<\/strong> Identification and authentication methods <br \/><strong>C.<\/strong> Monitoring for physical intrusion <br \/><strong>D.<\/strong> Intrusion Detection Systems<\/div>\n<p><\/p>\n<style> .hidden-div{ display:none } <\/style>\n<p>\t\t\t\t\t\t\t<button onclick=\"getElementById('hidden-div').style.display = 'block'\"> Show Answer <\/button> <button onclick=\"getElementById('hidden-div').style.display = 'none'\">Hide Answer<\/button><\/p>\n<div class=\"hidden-div\" id=\"hidden-div\"><span style=\"\"><\/p>\n<div class=\"answer\">Correct Answer: <strong>C<\/strong><\/div>\n<p><strong>Explanation:<\/strong> <\/p>\n<div class=\"explanation\">\nIt is considered to be a &#8216;Physical Control&#8217;<br \/>\nThere are three broad categories of access control: administrative, technical, and physical. Each category has different access control mechanisms that can be carried out manually or automatically. All of these access control mechanisms should work in concert with each other to protect an infrastructure and its data.<br \/>\nEach category of access control has several components that fall within it, a partial list is shown here. Not all controls fall into a single category, many of the controls will be in two or more categories. Below you have an example with backups where it is in all three categories:<br \/>\nAdministrative Controls Policy and procedures<br \/>\n-A backup policy would be in place<br \/>\nPersonnel controls Supervisory structure Security-awareness training Testing Physical Controls Network segregation Perimeter security Computer controls Work area separation<br \/>\nData backups (actual storage of the media, i:e Offsite Storage Facility)<br \/>\nCabling Technical Controls System access Network architecture Network access Encryption and protocols Control zone Auditing Backup (Actual software doing the backups)<br \/>\nThe following answers are incorrect :<br \/>\nPassword and resource management is considered to be a logical or technical control.<br \/>\nIdentification and authentication methods is considered to be a logical or technical control.<br \/>\nIntrusion Detection Systems is considered to be a logical or technical control. Reference : Shon Harris , AIO v3 , Chapter -4 : Access Control , Page : 180 -185<\/div>\n<p><\/strong><\/span> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>Which of the following is NOT a technical control? A. Password and resource management B. Identification and authentication methods C. Monitoring for physical intrusion D. Intrusion Detection Systems Show Answer Hide Answer Correct Answer: C Explanation: It is considered to be a &#8216;Physical Control&#8217; There are three broad categories of access control: administrative, technical, and [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[1078,323,3],"class_list":["post-328","post","type-post","status-publish","format-standard","hentry","category-systems-security-certified-practitioner-sscp","tag-choices","tag-question-0320","tag-systems-security-certified-practitioner-sscp"],"_links":{"self":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/328","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/comments?post=328"}],"version-history":[{"count":1,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/328\/revisions"}],"predecessor-version":[{"id":1404,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/328\/revisions\/1404"}],"wp:attachment":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/media?parent=328"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/categories?post=328"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/tags?post=328"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}