nerdexam
ExamsCERTIFIED-IN-CYBERSECURITYQuestions#374
(ISC)2(ISC)2

CERTIFIED-IN-CYBERSECURITY · Question #374

CERTIFIED-IN-CYBERSECURITY Question #374: Real Exam Question with Answer & Explanation

The correct answer is C: Privilege creep. Privilege creep is a problem that arises when an users accumulate system permissions for new tasks or new job duties, and when the old permissions are not removed (see ISC2 Study Guide, Chapter 3, Module 1). Rights collision refers to conflicts between access control policies. At

Access Controls Concepts

Question

What is the situation that occurs when a user accumulates system privileges that exceed the requirements of the user's job?

Options

  • AExcessive privileges
  • BLeast privilege
  • CPrivilege creep
  • DRights collision

Explanation

Privilege creep is a problem that arises when an users accumulate system permissions for new tasks or new job duties, and when the old permissions are not removed (see ISC2 Study Guide, Chapter 3, Module 1). Rights collision refers to conflicts between access control policies. At the same time, least privilege is the principle of providing users with only the minimum access required to perform their job functions. Excessive privileges is a general term for any situation where users can access more resources or data than they need to perform their job functions.

Topics

#Privilege Creep#Access Control#User Privileges#Least Privilege

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CERTIFIED-IN-CYBERSECURITY PracticeBrowse All CERTIFIED-IN-CYBERSECURITY Questions