The Recommended Controls Need to Be Compatible with Theorganization's Systems

Q17: Management should conduct a _ to identify

Q18: Appropriate security awareness training for all personnel

Q19: The implementation phase comprises not only the

Q20: Detection and recovery controls provide a means

Q21: Physical access or environmental controls are only

Q23: Incident response is part of the _

Q24: An IT security plan should include details

Q25: Management controls refer to issues that management

Q26: _ controls are pervasive, generic, underlying technical

Q27: _ controls focus on preventing security beaches