Certified Information Systems Auditor (CISA) — Question 857

An IS auditor reviewing the physical access section of a security plan for a data center should expect to find that:

Answer options

• A. entry points requiring different rules of access have been identified.
• B. access to environmental controls is well labeled.
• C. the data center has mantraps on entrances and exits.
• D. the access devices are connected to a remote management system.

Correct answer: A

Explanation

The correct answer, A, highlights the importance of identifying entry points with varying access rules, which is crucial for tailored security measures. Options B, C, and D, while relevant to physical security, do not address the specific expectation of differentiated access rules, making them less critical in this context.