nerdexam
(ISC)2

CISSP-ISSMP · Question #22

Which of the following can be prevented by an organization using job rotation and separation of duties policies?

The correct answer is A. Collusion. Collusion occurs when two or more individuals conspire to bypass controls and commit fraud or theft. Job rotation limits the time any single person is in a sensitive position, reducing the opportunity to build a long-term conspiracy. Separation of duties ensures no single person

Security Leadership and Management

Question

Which of the following can be prevented by an organization using job rotation and separation of duties policies?

Options

  • ACollusion
  • BEavesdropping
  • CBuffer overflow
  • DPhishing

How the community answered

(48 responses)
  • A
    94% (45)
  • C
    4% (2)
  • D
    2% (1)

Explanation

Collusion occurs when two or more individuals conspire to bypass controls and commit fraud or theft. Job rotation limits the time any single person is in a sensitive position, reducing the opportunity to build a long-term conspiracy. Separation of duties ensures no single person controls an entire process end-to-end, meaning multiple parties would need to collude to succeed-making fraud harder to execute without detection. Eavesdropping is a technical/physical threat addressed by encryption or physical security. Buffer overflow is a software vulnerability addressed by secure coding practices. Phishing is a social engineering attack addressed by user awareness training and email filtering.

Topics

#Job rotation#Separation of duties#Insider threat mitigation#Collusion prevention

Community Discussion

No community discussion yet for this question.

Full CISSP-ISSMP Practice