During a physical security audit, an auditor finds that the data center has biometric access controls but the door is often propped open during business hours for convenience. What does this MOST clearly indicate?

Home › MCQs › CISA › Question #6861

CISA QUESTION #6861

Question 1

Cost-effective security
Security controls undermined by operational practices rendering technical controls ineffective✔️
User-friendly environment
Balanced security approach

Correct Answer Explanation

Advanced security controls are worthless if bypassed by operational practices. Propping open secured doors eliminates access control benefits, making expensive biometric systems useless. This indicates lack of security awareness, inadequate enforcement, or poorly designed controls that users find too inconvenient to use properly.

More Options