A recent audit has revealed that all employees in the bookkeeping department have access to confidential
payroll information, while only two members of the bookkeeping department have job duties that require access
to the confidential information. Which of the following can be implemented to reduce the risk of this information
becoming compromised in this scenario? (Choose two.)
A.
Rule-based access control
B.
Role-based access control
C.
Data loss prevention
D.
Separation of duties
E.
Group-based permissions
i think this should be B and D.
0
1
I don’t agree. Separation of duties (SoD) (also known as “Segregation of duties”) is the concept of having more than one person required to complete a task. In business the separation by sharing of more than one individual in one single task is an internal control intended to prevent fraud and error. This would be group based permissions. There would need to be a group called bookkeeping-confidential and those two people would be put in that group. That way if someone goes on vacation, another person could be temporarily put in that group and then moved back out later.
0
1