What is an example of a technical control in cybersecurity?

The choice of implementing firewalls and encryption as an example of a technical control in cybersecurity is accurate because technical controls are comprised of security measures that involve technology and automated mechanisms to protect information systems. Firewalls serve as a barrier between a trusted network and untrusted networks, filtering traffic based on predetermined security rules. Encryption protects data by transforming it into a secure format that can only be read by someone with the correct decryption key, thus ensuring confidentiality and integrity of data in transit or at rest.

In contrast, organizational security policies represent administrative controls, which set the groundwork for protecting information but do not involve technology directly. Conducting security awareness training is also an administrative control that focuses on educating employees about security practices and behaviors. Regularly reviewing audit logs falls into the category of monitoring and may involve technical tools, but it is not a direct implementation of a control mechanism like firewalls or encryption. Therefore, the implementation of firewalls and encryption aptly exemplifies a technical control as it relies on technology to enforce security measures directly.