Which of the following is an operational control focused on people?

Prepare for the FISMA Interview Test. Get familiar with key topics and enhance your knowledge with flashcards and multiple-choice questions. Study effectively and be ready for your exam!

Multiple Choice

Which of the following is an operational control focused on people?

Explanation:
Operational controls that focus on people are the safeguards that shape how staff behave and perform the daily tasks needed to protect information. Awareness and Training directly targets users, teaching them security policies, how to recognize phishing or social engineering, proper handling of data, and the correct incident reporting procedures. By increasing knowledge and awareness, this control reduces human error and improves adherence to security practices, which is why it’s the best fit for a question about a people-centered operational control. Configuration Management is about maintaining secure system configurations, a technical or administrative concern rather than a people-focused activity. Contingency Planning covers preparing for and recovering from disruptions, which is about processes and continuity rather than daily user behavior. Physical and Environmental Protection deals with safeguarding facilities and equipment, focusing on physical security rather than ongoing training or awareness of personnel.

Operational controls that focus on people are the safeguards that shape how staff behave and perform the daily tasks needed to protect information. Awareness and Training directly targets users, teaching them security policies, how to recognize phishing or social engineering, proper handling of data, and the correct incident reporting procedures. By increasing knowledge and awareness, this control reduces human error and improves adherence to security practices, which is why it’s the best fit for a question about a people-centered operational control.

Configuration Management is about maintaining secure system configurations, a technical or administrative concern rather than a people-focused activity. Contingency Planning covers preparing for and recovering from disruptions, which is about processes and continuity rather than daily user behavior. Physical and Environmental Protection deals with safeguarding facilities and equipment, focusing on physical security rather than ongoing training or awareness of personnel.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy