____________ employs various layers of complementary security controls because different assets require differing levels of protection.

Security-in-depth means protecting assets by placing multiple, complementary security controls at different layers so that no single failure leads to a breach. Different assets carry different risk and impact, so relying on one control isn’t enough; layering defenses—physical barriers, access controls, monitoring, procedures—creates resilience: if one layer is bypassed, others still stand ready to deter, detect, or delay an attack. This exact description matches using several layers of protection to suit varying asset protection needs. Layered defense is similar in idea but the established term that captures this approach most precisely is security-in-depth. Access control refers to a specific type of control for who can access resources, not the multi-layered strategy itself, and risk management is the broader process of evaluating and prioritizing risks rather than detailing layered protections.