Exam CISA topic 1 question 1209 discussion

In this scenario, the most effective compensating control is monitored mantraps at the entry and exit points. A mantrap is a physical security access control system that consists of a small room with two sets of doors that interlock so that the first set of doors must close before the second set opens. Implementing a monitored mantrap prevents unauthorized access and ensures that all individuals are logged as they enter and exit the server room.

The IS auditor reviewing the physical access section of a security plan for a data center should expect to find that: C. the data center has mantraps on entrances and exits. Mantraps are physical security devices installed at entrances and exits to control access to a secure area. They typically consist of a small enclosure with two sets of interlocking doors, allowing only one door to be open at a time. Mantraps help prevent unauthorized individuals from entering or exiting a restricted area without proper authorization, thus enhancing physical security. Therefore, their presence would be a significant component of the physical access control measures in a data center.

A. Entry points requiring different rules of access have been identified. This includes identifying various entry points within the data center and specifying different levels of access control for each entry point based on the sensitivity of the area and the data stored within it. This approach helps ensure that appropriate access controls are implemented and enforced throughout the data center facility.