A Security Control that involves directing actions to be more secure, rather than securing anything in the moment.
- Provide a protected folder for storing sensitive files
- Create compliance policies and procedures
- Train users on proper security policy
- Post a sign for ‘Authorized Personnel Only’