Which of the following categories includes common types of security controls?

The category of security controls that encompasses common types is comprised of administrative, technical, and physical controls. Each of these categories plays a vital role in establishing a comprehensive security framework.

Administrative controls refer to policies, procedures, and practices that dictate how an organization manages its information security. This includes everything from employee training to incident response strategies, which are essential to maintaining a secure environment.

Technical controls involve the use of technology to protect systems and data. This includes firewalls, intrusion detection systems, and encryption. These controls are crucial in ensuring that the organization can effectively shield its networks and sensitive information from unauthorized access and other cyber threats.

Physical controls, on the other hand, focus on the physical aspects of security. This can include access controls such as locks, surveillance systems, and security personnel. These measures are important for protecting physical assets and facilities from theft, damage, or unauthorized access.

By combining these three categories—administrative, technical, and physical—an organization can create a layered security approach that addresses various vulnerabilities and threats comprehensively. Other options in the question may touch upon various aspects of security but do not encapsulate the standard classification of security controls as effectively as this one.