CompTIA CySA+ (CS0-002) — Question 44

Which of the following BEST explains the function of a managerial control?

Answer options

• A. To help design and implement the security planning, program development, and maintenance of the security life cycle
• B. To guide the development of training, education, security awareness programs, and system maintenance
• C. To create data classification, risk assessments, security control reviews, and contingency planning
• D. To ensure tactical design, selection of technology to protect data, logical access reviews, and the implementation of audit trails

Correct answer: C

Explanation

Option C is correct because it accurately describes the comprehensive nature of managerial control, which involves establishing frameworks for data classification, assessing risks, reviewing security controls, and planning for contingencies. The other options focus on specific areas of security management but do not encompass the broader managerial control function as effectively.