Exam SY0-501 topic 1 question 97 discussion

This one's a little tricky. I would be deterred if I saw security guards. I checked some books and definitions and it's not clear. I would have guessed C. Deterrent. The only thing that would suggest it's A. Administrative is that the guard doesn't stand there in wait, but checks authorization of personnel entering the facility. This type of guard it costly and the work they can be doing is Administrative. - Not sure. Maybe someone else can have a better answer.

Administrative control because the guards verify the authorization of all personnel, if it was just guards it would be deterrent

i picked C over A, because of "Adhering to a layered security approach". this suggests they have multiple layers and guards are doing what they are supposed to do - Deter

There are 3 different security control types Technical ,administrative, and physical. Technical means to log in your computer you need a in and pwd that is technical. To follow all security rules you need adminsttive gudlines do this do not bring usb etc finally the pyshical security includes security guard cctv cemera ,warning signs and labels. The purpose is as deterrent or discourage the bad guys. So security gurd is labeled as Physical not technical

If the security guard is walking the perimeter they are a deterrent. Conducting credential checks - administrative.

Did we ever figure which answer is correct? A or C? This is a question I missed today in a cram class and they said the answer is A but I find it hard to agree with... I think it's C myself.

Per Dulaney & Easttom 501: "Administrative An administrative control is one that comes down through policies, procedures, and guidelines. An example of an administrative control is the escalation procedure to be used in the event of a break-in: who is notified first, who is called second, and so on. Another example of an administrative control is the list of steps to be followed when a key employee is terminated: disable their account, change the server password, and so forth." The material I have summarizes Administrative similarly. They also always list guards under primarily deterrent and also preventative. These guards are actually preventative, but since not listed closest is C Deterrent.

According to Professor Messer Security Controls - CompTIA Security+ SY0-501 - 5.7, a security guard is a PREVENTIVE Security Control ,but this is not an option for an answer. According to the Professor ADMINISTATIVE is a Control Type, that determines how people act. A security guard can determine how people act ,by causing people to either follow standard procedure to gain access to a space, or not follow procedure and not gain access.

Deterrent controls is right. CompTIA Security+: Get Certified Get Ahead by Darrel Gibson page 74

I would go with deterrent. Here's why. First off, security guards are classified as preventative control. In addition, as stated in Gibson's book - "You can often describe many deterrent controls as preventative controls". If preventative control is a possible answer, I would select that. Otherwise, go with deterrent. Administrative controls are risk assessments, vulnerability assessment, penetration testing, awareness and training, configuration and change management, contingency planning, media protection, physical and environmental protection (such as cameras, door locks, heating and ventilation systems).

As you may notice, one control may serve in one, two or more functional types. For example, the security guards are considered to be preventive, detective, and deterrent as well. Source https://blog.eduonix.com/networking-and-security/learn-different-types-security-controls-cissp/

Administrative controls are policies. Only C can be correct.

A is correct. It can't be deterrent because the guard is literally verifying authorization.

"Administrative" option A is correct. There are three control types, Administrative, Physical, and Technical. The other options are all security goals. Hope this helps understand the question ask.

You should check these out: https://krhio.org/hipaa-security-facility-access-controls-in-physical-security/ http://www.buffalo.edu/ubit/policies/restricted-data/laws/hipaa/access-control-validation.html

Administrative controls leverage security policies and are used to train personnel. Human security guards, armed or unarmed, can be placed in front of and around a location to protect it. They can monitor critical checkpoints and verify identification, allow or disallow access, and log physical entry events. They also provide a visual deterrent and can apply their own knowledge and intuition to potential security breaches. Source: CompTIA Security+ StudyGuide

deterrent is incorrect, defferent is more like a sign STOP, WARNING, Alarms or barking dogs. Looking at user's ID is administrative.