A cross-functional team is working with a vendor to develop and implement information system policies in response to the growing use of customer information and networking within business operations. The team is currently addressing concerns about information system equipment malfunctions. Within type of controls should this team create?

Software controls focus on the applications and programs used within the information systems. While they are important for ensuring that software functions correctly and securely, they do not directly address the operational concerns related to the physical equipment malfunctions the team is currently facing.

Data security controls are designed to protect information from unauthorized access and breaches. Although important in the context of customer information, these controls do not specifically target the operational aspects of information system equipment, which is the primary concern at this stage of the project.

Hardware controls pertain to the physical security and management of the equipment itself. While this may seem relevant, hardware controls do not encompass the broader operational policies needed for effectively managing equipment malfunctions and ensuring smooth operation within information systems.