(ISC)2(ISC)2
CISSP · Question #962
CISSP Question #962: Real Exam Question with Answer & Explanation
Sign in or unlock CISSP to reveal the answer and full explanation for question #962. The question stem and answer options stay visible for context.
Submitted by ricky.ec· Mar 5, 2026Identity and Access Management
Question
An organization is attempting to strengthen the configuration of its enterprise resource planning (ERP) software in order to enforce sufficient segregation of duties (SoD). Which of the following approaches would BEST improve SoD effectiveness?
Options
- AImplementation of frequent audits of access and activity in the ERP by a separate team with no
- BImplementation of strengthened authentication measures including mandatory second-factor
- CReview of ERP access profiles to enforce the least-privilege principle based on existing employee
- DReview of employee responsibilities and ERP access profiles to differentiate mission activities
Unlock CISSP to see the answer
You've previewed enough free CISSP questions. Unlock CISSP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Segregation of Duties (SoD)#ERP security#Access control#Role-based access control