SoD prevents conflict of interest, fraud, and errors by dividing responsibilities between teams.
Information Security focuses on safeguarding assets, while Identity Access Management handles user access controls.
Why This is Correct:
Ensures accountability and reduces the risk of unauthorized activities.
Why Other Options Are Incorrect:
B. Developers and Network Teams with Admin Rights: Violates SoD by concentrating authority.
C. Finance Accessing HR Data: Unnecessary and violates privacy principles.
D. Information Security and Network Teams: Often collaborate, but their primary functions should remain distinct.
References:EC-Council emphasizes SoD as a foundational control to prevent misuse of authority or resources.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit