ITIL · Question #313
What is the objective of Access Management?
The correct answer is D. To manage the right to use a service or group of services. Access Management's objective is to grant authorized users the right to use IT services while preventing unauthorized access, operating as the execution arm of Information Security Management policies.
Question
What is the objective of Access Management?
Options
- ATo provide security staff for Data Centers and other buildings
- BTo manage access to computer rooms and other secure locations
- CTo manage access to the Service Desk
- DTo manage the right to use a service or group of services
How the community answered
(20 responses)- B10% (2)
- C5% (1)
- D85% (17)
Why each option
Access Management's objective is to grant authorized users the right to use IT services while preventing unauthorized access, operating as the execution arm of Information Security Management policies.
Providing physical security staff for data centers is a physical security or facilities management responsibility and is entirely outside the scope of ITIL Access Management.
Managing physical access to computer rooms and secure locations is a physical security concern handled by facilities or physical security management, not by ITIL Access Management.
Access Management governs logical access rights to all IT services broadly - it is not limited to or specifically focused on managing access to the Service Desk.
Access Management, as defined in ITIL Service Operation, is responsible for managing the rights of users to use a service or group of services, ensuring only authorized individuals can access systems and data. It implements the policies defined by Information Security Management and translates those policies into operational access controls.
Concept tested: ITIL Access Management objective and scope
Topics
Community Discussion
No community discussion yet for this question.