20d โข ๐โโ๏ธ CISSP
CISSP Practice Question (Domain 5: Identity and Access Management - AI Exam Guidance)
A developer builds an internal AI chatbot that answers employee HR questions by querying the HRIS system. The chatbot uses a single service account with full read access to all employee records, including salaries and performance reviews. What should the security team require BEFORE production launch?
A. Multi-factor authentication on the chatbot's user-facing login page
B. Scoped service account permissions aligned with the chatbot's actual query needs
C. Encryption of the chatbot's conversation logs at rest
D. A privacy notice informing employees that the chatbot uses AI
Come back for the answer tomorrow, or study more now!
2
20 comments
CISSP Practice Question (Domain 5: Identity and Access Management - AI Exam Guidance)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+43
3
+34
4
+32
5
+30
Powered by