CISSP-ISSMP · Question #22
Which of the following can be prevented by an organization using job rotation and separation of duties policies?
The correct answer is A. Collusion. Collusion occurs when two or more individuals conspire to bypass controls and commit fraud or theft. Job rotation limits the time any single person is in a sensitive position, reducing the opportunity to build a long-term conspiracy. Separation of duties ensures no single person
Question
Which of the following can be prevented by an organization using job rotation and separation of duties policies?
Options
- ACollusion
- BEavesdropping
- CBuffer overflow
- DPhishing
How the community answered
(48 responses)- A94% (45)
- C4% (2)
- D2% (1)
Explanation
Collusion occurs when two or more individuals conspire to bypass controls and commit fraud or theft. Job rotation limits the time any single person is in a sensitive position, reducing the opportunity to build a long-term conspiracy. Separation of duties ensures no single person controls an entire process end-to-end, meaning multiple parties would need to collude to succeed-making fraud harder to execute without detection. Eavesdropping is a technical/physical threat addressed by encryption or physical security. Buffer overflow is a software vulnerability addressed by secure coding practices. Phishing is a social engineering attack addressed by user awareness training and email filtering.
Topics
Community Discussion
No community discussion yet for this question.