The compensating control that MOST effectively addresses the risk associated with piggybacking into a restricted area without a dead-man door is:
Click on the arrows to vote for the correct answer
A. B. C. D.D.
Piggybacking is the act of following someone else into a restricted area without going through the proper access control procedures. A dead-man door is a type of access control mechanism that prevents piggybacking by allowing only one person to pass through a door at a time. If a dead-man door is not in place, then piggybacking can become a serious security risk, as unauthorized individuals can gain access to restricted areas.
Compensating controls are alternative measures that can be implemented to address a particular risk when a primary control is not feasible or effective. In this case, since a dead-man door is not in place, a compensating control must be implemented to mitigate the risk of piggybacking.
Of the options provided, two-factor authentication and biometric door locks are both effective compensating controls for preventing piggybacking. Two-factor authentication requires the use of two separate authentication factors, such as a password and a security token, to gain access to a restricted area. Biometric door locks use physical characteristics, such as fingerprints or iris scans, to identify individuals and grant access.
Requiring employees to wear ID badges can also be an effective compensating control, but it is not as strong as two-factor authentication or biometric door locks. ID badges can be lost, stolen, or shared, which can compromise the security of the restricted area.
Security awareness training is not a compensating control for preventing piggybacking, but it is an important component of a comprehensive security program. Security awareness training can educate employees about the risks of piggybacking and the importance of following access control procedures.
In conclusion, the compensating control that MOST effectively addresses the risk associated with piggybacking into a restricted area without a dead-man door is either two-factor authentication or biometric door locks. Requiring employees to wear ID badges can also be effective, but it is not as strong as the other two options. Security awareness training is important but is not a compensating control for this particular risk.