Physical and environmental IT controls focus on securing IT infrastructure against unauthorized access and environmental hazards. Locating servers in locked rooms with restricted admission protects hardware from theft, tampering, and environmental risks.
Option B (Applying encryption) – A logical security control, not a physical one.
Option C (Access rights allocation) – A logical control related to identity management.
Option D (Software patch control) – Part of IT governance and system maintenance, not physical security.
Since physical access control is a critical component of IT security, Option A is correct.
[Reference: IIA IT Security – Physical and Environmental Controls, , , ]
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit