nerdexam
(ISC)2

CISSP · Question #721

A manager identified two conflicting sensitive user functions that were assigned to a single user account that had the potential to result in financial and regulatory risk to the company. The manager

The correct answer is B. Separation of duties analysis. Separation of duties is a security principle that requires that no single person or entity should be able to perform two or more conflicting or sensitive functions that could result in fraud, misuse, or compromise of the system or data. Separation of duties analysis is the proces

Submitted by ricky.ec· Mar 5, 2026Security and Risk Management

Question

A manager identified two conflicting sensitive user functions that were assigned to a single user account that had the potential to result in financial and regulatory risk to the company. The manager MOST likely discovered this during which of the following?

Options

  • ASecurity control assessment.
  • BSeparation of duties analysis
  • CNetwork Access Control (NAC) review
  • DFederated identity management (FIM) evaluation

How the community answered

(27 responses)
  • A
    11% (3)
  • B
    78% (21)
  • C
    4% (1)
  • D
    7% (2)

Explanation

Separation of duties is a security principle that requires that no single person or entity should be able to perform two or more conflicting or sensitive functions that could result in fraud, misuse, or compromise of the system or data. Separation of duties analysis is the process of identifying and resolving such conflicts of interest or incompatible functions. A manager who discovers that a single user account has been assigned two conflicting sensitive user functions, such as approving and recording transactions, has most likely performed a separation of duties analysis. Security control assessment, network access control review, and federated identity management evaluation are not directly related to the identification of conflicting user functions.

Topics

#separation of duties#risk management#user access review

Community Discussion

No community discussion yet for this question.

Full CISSP Practice