An organization is required to implement background checks on all employees with access to databases containing credit card information. This is considered a security___________.
Administrative controls are the policies, and formal procedures established by an organization to manage its security framework and enforce compliance with security regulations, internal governance goals, and cybersecurity standards. Administrative controls provide the governance needed to guide the behavior of individuals and the operation of systems within the organization. The primary purpose of administrative controls is to provide a framework for the organization’s overall security strategy. They ensure that security measures are well-documented, communicated, and enforced throughout the organization.
Background checks are a form of administrative control because they are part of the organization's policies and procedures regarding personnel security. These checks are aimed at ensuring that employees with access to sensitive information, such as credit card data, are reliable and do not pose a threat to the security of that information. Administrative controls typically involve methods implemented by the organization to manage and monitor business operations and employees, and background checks fall into this category.
C. Procedural control
Procedural controls refer to the policies and procedures to protect an organization's assets, including data. These controls are designed to ensure that the organization's processes and activities are conducted securely and controlled. Background checks are a procedural measure to ensure that individuals with access to sensitive information, such as credit card data, are reliable and do not pose a security risk. This type of control is more about the processes and procedures governing human actions rather than technical systems or management oversight.
Answer is D. Administrative control, Administrative controls refer to the policies, procedures, and practices implemented by an organization to manage and mitigate risks. Background checks are typically considered an administrative control as they involve implementing specific measures and processes to verify the credentials and background of individuals before granting them access to sensitive information or systems.
Answer is D. Administrative control
The requirement to implement background checks on all employees with access to databases containing credit card information is an example of an administrative control. Administrative controls are policies, procedures, and guidelines that are put in place to manage and reduce risk, and typically involve management and administrative personnel.
the answer is incorrrect , security personnel is an operational control
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
alfaMegatron
3 months agoclaudiosousa
10 months agoONERAPTOR
1 year agoarifbhatkar
1 year, 4 months agoVOAKDO_cciso
1 year, 6 months agoVOAKDO_cciso
1 year, 6 months agoVOAKDO_cciso
1 year, 6 months agoBoats
1 year, 6 months agoPika26
1 year, 8 months agocertguy0001
2 years agomrsteve35
2 years, 1 month agobmaheux
2 years, 1 month agoDinaBS
2 years, 4 months ago