An organization wants to separate permissions for individuals who perform system changes from individuals who perform auditing of those system changes. Which of the following access control approaches is BEST suited for this?
A) Assign administrators and auditors to different groups and restrict permissions on system log files to read-only for the auditor group.
B) Assign administrators and auditors to the same group, but ensure they have different permissions based on the function they perform.
C) Create two groups and ensure each group has representation from both the auditors and the administrators so they can verify any changes that were made.
D) Assign file and folder permissions on an individual user basis and avoid group assignment altogether.
Correct Answer:
Verified
Q1000: A systems administrator needs to configure an
Q1001: A user is unable to obtain an
Q1002: An information security specialist is reviewing the
Q1003: A junior systems administrator noticed that one
Q1004: An organization uses SSO authentication for employee
Q1006: A system in the network is used
Q1007: The concept of connecting a user account
Q1008: A security analyst observes the following events
Q1009: A security analyst runs a monthly file
Q1010: A security analyst needs to be proactive
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents