CISSP Question #67: Real Exam Question with Answer & Explanation

The correct answer is B: Separation of duties. Separation of duties is a security management control that divides a critical or sensitive task into two or more parts, and assigns them to different individuals or groups. This reduces the risk of fraud, error, or abuse of authority, as no single person or group can perform the

Submitted by yuriko_h· Mar 5, 2026Security and Risk Management

Question

What security management control is MOST often broken by collusion?

Options

AJob rotation
BSeparation of duties
CLeast privilege model
DIncreased monitoring

Explanation

Separation of duties is a security management control that divides a critical or sensitive task into two or more parts, and assigns them to different individuals or groups. This reduces the risk of fraud, error, or abuse of authority, as no single person or group can perform the entire task without the cooperation or oversight of others. Separation of duties is most often broken by collusion, which is a secret or illegal agreement between two or more parties to bypass the control and achieve a common goal.

Topics

#separation of duties#collusion#security controls

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions