Log monitoring is an example of which category of control?

Log monitoring is primarily categorized as an operational control. This type of control focuses on processes, procedures, and activities that support the day-to-day functioning of security measures.

In the context of log monitoring, it involves the continuous analysis of logs generated by systems, applications, and network devices to identify and respond to vulnerabilities and security breaches. It helps organizations maintain operational efficiency by ensuring that they are aware of activities happening within their systems. By regularly reviewing logs, security personnel can detect anomalous behavior, thereby enhancing the overall security posture of the organization.

Operational controls, such as log monitoring, are essential in creating a proactive environment that not only responds to incidents after they occur but also helps in maintaining the integrity and availability of the organization's information systems.