CERTIFIED-IN-CYBERSECURITY · Question #21
CERTIFIED-IN-CYBERSECURITY Question #21: Real Exam Question with Answer & Explanation
The correct answer is B: Separation of Duties. According to the principle of Separation of Duties, operations on objects are to be segmented (often referred to as 'transactions'), requiring distinct users and authorizations. The involvement of multiple users guarantees that no single user can perpetrate and conceal errors or
Question
Which of the following principles aims primarily at fraud detection?
Options
- ADefense in Depth
- BSeparation of Duties
- CLeast Privilege
- DPrivileged Accounts
Explanation
According to the principle of Separation of Duties, operations on objects are to be segmented (often referred to as 'transactions'), requiring distinct users and authorizations. The involvement of multiple users guarantees that no single user can perpetrate and conceal errors or fraud in their duties. To the extent that users have to review the work of other users, Separation of Duties can also be considered a mechanism of fraud detection (see ISC2 Study Guide Chapter 1, Module 3). The principle of Least Privilege states that subjects should be given only those privileges required to complete their specific tasks. The principle of Privileged Accounts refers to the existence of accounts with permissions beyond those of regular users. Finally, the principle of Defense in Depth endorses the use of multiple layers of security for holistic protection.
Topics
Community Discussion
No community discussion yet for this question.