A security administrator is updating the organization's risk register and must provide an example of a technical control to senior management for budgeting purposes. Which of the following actions would meet this requirement?
Installing firewall software on a network server
Deploying security awareness training for employees
Performing background checks on new hires
Establishing a policy requiring badge access to enter the facility
Technical controls are safeguards implemented through hardware, software, or firmware that the information system enforces. Installing firewall software on a network server fits this definition because the software actively filters and controls network traffic at the system level. The remaining choices rely on people, policies, or physical measures rather than technology: security-awareness training is an operational control, a badge-access policy is primarily a managerial/physical directive, and pre-employment background checks are administrative (managerial) personnel controls. Therefore, only the firewall example qualifies as a technical control.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are technical controls in cybersecurity?
Open an interactive chat with Bash
How does a firewall work as a technical control?
Open an interactive chat with Bash
What is the difference between technical controls and administrative controls?