IsacaIsaca
CGEIT · Question #585
CGEIT Question #585: Real Exam Question with Answer & Explanation
The correct answer is C: System design. System design best enables the alignment of user access rights with business requirements by integrating access controls directly into the application's architecture based on defined roles and data sensitivity.
Submitted by omar99· Apr 18, 2026Governance of Enterprise IT
Question
Which of the following BEST enables the alignment of user access rights with business requirements?
Options
- AData classification policy
- BMaturity model
- CSystem design
- DData architecture model
Explanation
System design best enables the alignment of user access rights with business requirements by integrating access controls directly into the application's architecture based on defined roles and data sensitivity.
Common mistakes.
- A. A data classification policy defines the sensitivity of data, which is an input to determining access rights, but it does not enable the alignment of those rights with specific business requirements within systems.
- B. A maturity model assesses the capability and effectiveness of processes, but it does not directly define or enable the alignment of user access rights with business needs.
- D. A data architecture model describes how data is structured, stored, and integrated, which informs access decisions, but the system design is where the actual access controls for users are implemented based on that data architecture.
Concept tested. User access rights design and alignment
Topics
#User access rights#Business requirements#System design#Access control
Community Discussion
No community discussion yet for this question.