CISSP Question #1395: Real Exam Question with Answer & Explanation

The correct answer is B: Vendor access should be disabled until needed. Vendor accounts that are used for emergency maintenance should be disabled when not in use, and enabled only when authorized and necessary. This can prevent unauthorized or malicious access by vendors or attackers who compromise vendor credentials. Vendor access should also be su

Submitted by ahmad_uae· Mar 5, 2026Identity and Access Management

Question

Which one of the following BEST protects vendor accounts that are used for emergency maintenance?

Options

AEncryption of routing tables
BVendor access should be disabled until needed
CRole-based access control (RBAC)
DFrequent monitoring of vendor access

Explanation

Vendor accounts that are used for emergency maintenance should be disabled when not in use, and enabled only when authorized and necessary. This can prevent unauthorized or malicious access by vendors or attackers who compromise vendor credentials. Vendor access should also be subject to the principle of least privilege, meaning that vendors should only have the minimum level of access required to perform their tasks. Additionally, vendor access should be monitored and audited to ensure compliance and accountability.

Topics

#Vendor access#Least privilege#Just-in-time access#Access control

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions