May 24 โข ๐โโ๏ธ CISSP
Practice Question
An employee at a large enterprise has moved to a new department. Their new role does not require access to the project management system used in the previous department. However, access is still active. What principle has been violated and what should the IAM team implement to prevent similar issues?
A. Principle of Least Privilege; Implement RBAC with periodic access reviews.
B. Separation of Duties; Require dual approval for role changes.
C. Principle of Accountability; Require stronger authentication methods.
D. Need to Know; Use SSO to streamline access control.
2
16 comments
Practice Question
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+17
3
+15
4
+12
5
+11
Powered by