CISSP · Question #914
Which Identity and Access Management (IAM) process can be used to maintain the principle of least privilege?
The correct answer is D. user access review. User access reviews are a key Identity and Access Management (IAM) process that helps maintain the principle of least privilege. The principle of least privilege states that users should only have access to the resources and permissions necessary to perform their job functions. O
Question
Which Identity and Access Management (IAM) process can be used to maintain the principle of least privilege?
Options
- Aidentity provisioning
- Baccess recovery
- Cmulti-factor authentication (MFA)
- Duser access review
How the community answered
(41 responses)- A2% (1)
- B7% (3)
- D90% (37)
Explanation
User access reviews are a key Identity and Access Management (IAM) process that helps maintain the principle of least privilege. The principle of least privilege states that users should only have access to the resources and permissions necessary to perform their job functions. Over time, users may accumulate unnecessary or excessive permissions due to changes in roles, job functions, or projects. Regular user access reviews help ensure that users only retain the appropriate level of access and remove any unnecessary or outdated permissions. During user access reviews: Access levels and permissions are audited to ensure they are in line with the user's current role and responsibilities. Unnecessary access or permissions that go beyond what is required for the user’s duties can be This process ensures that employees are not granted more privileges than needed, helping to reduce the risk of accidental or malicious misuse of privileges.
Topics
Community Discussion
No community discussion yet for this question.