How Does Technical Control Have A False Sense Of Security

Shameka Johnson

SE5780 Practices for Administration of Physical & Operations Security

Technical Controls Paper

Administrative, Technical and Physical Controls (false sense of security)
Administrative controls influence the choice of technical controls by giving guidelines and policies on hardware and software installation; such as, having a policy that states that all laptops must have a company standard encryption that the technical support staff supports. Another example, all employees must have the company standard antivirus software on their computers. Administrative controls are concerned largely with the security policies and standards that need to be adhered to throughout the organization. Administrative controls can bring about a false sense of security if users are allowed to not abide by polices, procedures and guidelines in place. Not having the right policies and procedures in place can also bring about a false sense of security. The false sense of security provided by an ineffective policy is dangerous. The point of a Security policy is to create an actionable and realistic policy that your company can use to manage its security practices and reduce its risk of a security incident.
Some of the devices used as technical controls include firewalls, IDS systems, and authentication devices such as biometrics. Technical controls can be hardware or software. Technical controls can have a false sense of security by failing to perform as needed. If a company has an IDS and IPS but yet they continue to have viruses, that is a false sense of security. Providing users passwords to authenticate into systems can be a sense of false security if users are providing their credentials to others to gain access to