nerdexam
PeopleCert

ITIL · Question #313

What is the objective of Access Management?

The correct answer is D. To manage the right to use a service or group of services. Access Management's objective is to grant authorized users the right to use IT services while preventing unauthorized access, operating as the execution arm of Information Security Management policies.

Processes

Question

What is the objective of Access Management?

Options

  • ATo provide security staff for Data Centers and other buildings
  • BTo manage access to computer rooms and other secure locations
  • CTo manage access to the Service Desk
  • DTo manage the right to use a service or group of services

How the community answered

(20 responses)
  • B
    10% (2)
  • C
    5% (1)
  • D
    85% (17)

Why each option

Access Management's objective is to grant authorized users the right to use IT services while preventing unauthorized access, operating as the execution arm of Information Security Management policies.

ATo provide security staff for Data Centers and other buildings

Providing physical security staff for data centers is a physical security or facilities management responsibility and is entirely outside the scope of ITIL Access Management.

BTo manage access to computer rooms and other secure locations

Managing physical access to computer rooms and secure locations is a physical security concern handled by facilities or physical security management, not by ITIL Access Management.

CTo manage access to the Service Desk

Access Management governs logical access rights to all IT services broadly - it is not limited to or specifically focused on managing access to the Service Desk.

DTo manage the right to use a service or group of servicesCorrect

Access Management, as defined in ITIL Service Operation, is responsible for managing the rights of users to use a service or group of services, ensuring only authorized individuals can access systems and data. It implements the policies defined by Information Security Management and translates those policies into operational access controls.

Concept tested: ITIL Access Management objective and scope

Topics

#Access Management#access rights#service access

Community Discussion

No community discussion yet for this question.

Full ITIL Practice