nerdexam
(ISC)2

CISSP · Question #1055

Which of the following statements BEST describes least privilege principle in a cloud environment?

The correct answer is C. A single cloud administrator is configured to access core functions.. The least privilege principle means that users, applications, or systems should only be given the minimum level of access required to perform their specific tasks, reducing the risk of unauthorized actions and minimizing the attack surface. In the context of cloud environments: C

Submitted by chen.hong· Mar 5, 2026Identity and Access Management (IAM)

Question

Which of the following statements BEST describes least privilege principle in a cloud environment?

Options

  • ANetwork segments remain private if unneeded to access the internet.
  • BInternet traffic is inspected for all incoming and outgoing packets.
  • CA single cloud administrator is configured to access core functions.
  • DRouting configurations are regularly updated with the latest routes.

How the community answered

(51 responses)
  • A
    4% (2)
  • B
    14% (7)
  • C
    75% (38)
  • D
    8% (4)

Explanation

The least privilege principle means that users, applications, or systems should only be given the minimum level of access required to perform their specific tasks, reducing the risk of unauthorized actions and minimizing the attack surface. In the context of cloud environments: C describes a scenario where only a single administrator has the necessary access to core functions (which follows the least privilege principle by limiting who can access critical resources).

Topics

#least privilege#cloud IAM#role-based access control#cloud security principles

Community Discussion

No community discussion yet for this question.

Full CISSP Practice