Free CompTIA Security+ SY0-701 Practice Question

Developing comprehensive policies and procedures is an example of Managerial Controls. These controls involve the establishment and oversight of security policies, procedures, and guidelines that govern the organization's security posture. Managerial controls are critical for setting the direction and expectations for security within the organization.

• Technical Controls involve implementing technology to enforce security measures, such as firewalls and encryption.
• Operational Controls focus on day-to-day operational activities like incident response and change management.
• Physical Controls protect physical assets and premises using devices like locks and surveillance cameras.

Understanding the distinct categories of controls helps in effectively applying them to enhance organizational security.