Choices, choices, choices

In Chapter 1, senior management developed several high-level policies to establish a framework to manage or govern the enterprise in a prudent manner. Senior management initiated a risk management program to bring into focus the areas of greatest risk and to address and manage those risks by using cost-justified countermeasures. This chapter describes in more detail the various types of countermeasures (access controls) the security professional could choose from to implement that carefully administered security program.

Countermeasures Versus Access Controls

Access controls are a subset of countermeasures. All access controls will be countermeasures, but not all countermeasures are access controls. Countermeasures include ...

Get CISSP Training Kit now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.