CERTIFIED-IN-CYBERSECURITY · Question #122
CERTIFIED-IN-CYBERSECURITY Question #122: Real Exam Question with Answer & Explanation
The correct answer is A: Security Awareness Training. The correct answer is that avoid security threats. Security Awareness Training is not a security principle but rather a human- focused control. Zero Trust model, Separation of Duties and Least Privilege are all security principles. The Zero Trust model is based on the idea that o
Question
Which of these is NOT a security principle?
Options
- ASecurity Awareness Training
- BLeast Privilege
- CZero Trust model
- DSecurity Awareness Training refers to educational programs that teach users to recognize and
Explanation
The correct answer is that avoid security threats. Security Awareness Training is not a security principle but rather a human- focused control. Zero Trust model, Separation of Duties and Least Privilege are all security principles. The Zero Trust model is based on the idea that organizations should not trust any user, device or network (even within the organization's own network) until appropriately verified. Separation of Duties is a principle that involves dividing tasks and responsibilities among different individuals or groups, in order to prevent any single individual or group from having too much control over a given process. This helps reduce the risk of fraud or errors. Least Privilege prescribes limiting privileges and access to resources only to those users and processes that actually need them. This helps reduce the risk of unauthorized access, or of misuse of resources.
Topics
Community Discussion
No community discussion yet for this question.