CERTIFIED-IN-CYBERSECURITY · Question #429
CERTIFIED-IN-CYBERSECURITY Question #429: Real Exam Question with Answer & Explanation
The correct answer is B: Access to physical premisses. Access to physical premises is not typically covered by an Acceptable Use Policy (AUP) (see ISC2 Study Guide, Chapter 5, Module 3). An AUP focuses primarily on the acceptable use of digital resources, such as data, systems, and Internet usage. For example, an AUP may state that e
Question
Which of the following is NOT commonly included in an Acceptable Use Policy (AUP)?
Options
- AInternet usage
- BAccess to physical premisses
- CData access
- DSystem access
Explanation
Access to physical premises is not typically covered by an Acceptable Use Policy (AUP) (see ISC2 Study Guide, Chapter 5, Module 3). An AUP focuses primarily on the acceptable use of digital resources, such as data, systems, and Internet usage. For example, an AUP may state that employees should not use their work email for personal correspondence, or that company- owned devices should not be used for non-work related activities. It may also outline acceptable uses of the Internet during work hours, such as prohibiting social media or streaming services. An AUP typically does not cover physical access to buildings or facilities, and the remaining options, data access, system access, and Internet use, are all common elements of an AUP. Specifically, data access policies outline the conditions under which employees can access company data. System access policies define who can access certain systems and how they can do so. Internet usage policies specify what Internet activity is acceptable during work hours.
Topics
Community Discussion
No community discussion yet for this question.