For each of these classes, there are four types of controls:

Preventive (Deterrent)

Detective

Corrective (Recovery)

Compensating

Please assign the correct Class of Security Control and Type of Control that match with the Security Control Listed below. It might be possible that multiple control classes or Control types could be an answer. It could also be None.

Security Control	Control Class: A-Administration) T-Technical P Physical)	Control Type P Preventive D Detective CR Corrective CM-Compensating
Security Awareness Training
Firewall
Anti-Virus
Hot Site
OS Upgrade
IDS (Intrusion Detection System)
System Monitoring
Backup Generator
System Monitoring
Security Guard
Motion Detector
Vulnerability Mitigation

2. Match he correct COBIT domains (

A - Planning and Organization, B - Acquisition and Implementation, C - Delivery and Support, and D - Monitoring and Evaluation.

To the following to the following Control Objectives.

CONTROL OBJECTIVE	MATCHING COBIT DOMAIN
define the information architecture
assess risks
manage changes
ensure continuous service
assess internal control adequacy
install and accredit systems
obtain independent assurance
ensure compliance with external requirements
develop and maintain procedures
define a strategic IT plan
ensure systems security
manage the IT investment
manage human resources
identify and allocate costs
provide for independent audit
educate and train users
determine the technological direction

3) Write the correct NIST Security Control Class (Technical, Operational, or Management) for the given Security Control families and Identifiers

IDENTIFIER	FAMILY	CLASS
Risk Assessment	RA
Access Control	AC
Incident Response	IR
Maintenance	MA
Contingency Planning	CP
Personnel Security	PS
Media Protection	MP
Awareness and Training	AT
System and Services Acquisition	SA
Audit and Accountability	AU
Configuration Management	CM
Program Management	PM
System and Information Integrity	SI
Planning	PL
Identification and Authentication	IA