
Explanation:
Behavioral controls are a category of informational controls that address actions taken by people when it comes to handling and protecting information. They are a type of administrative control that focuses on influencing the behavior of people within an organization to reduce information security risks. Examples of behavioral controls include security awareness training, policies and procedures, background checks, and security clearances. These controls are designed to ensure that individuals within an organization are aware of the potential risks associated with information handling and are equipped with the necessary knowledge and skills to mitigate these risks. They are crucial in creating a security-conscious culture within an organization, thereby enhancing the overall effectiveness of information security management.
Choice A is incorrect. Technical controls, also known as logical controls, primarily involve the use of software and hardware to protect information systems. They do not directly influence the behavior of individuals within an organization.
Ultimate access to all questions.
Q.5115 Which of the following is a category of informational controls that address actions taken by people when it comes to handling and protecting information?
A
Technical controls
B
Behavioral controls
C
Prevention controls
D
Detection controls
No comments yet.