Which of the following should Joe, a security manager, implement to reduce the risk of employees
working in collusion to embezzle funds from his company?

A company is looking to reduce the likelihood of employees in the finance department being involved
with money laundering. Which of the following controls would BEST mitigate this risk?

The Chief Security Officer (CSO) is concerned about misuse of company assets and wishes to determine
who may be responsible. Which of the following would be the BEST course of action?

A software developer is responsible for writing the code on an accounting application. Another software
developer is responsible for developing code on a system in human resources. Once a year they have to
switch roles for several weeks.
Which of the following practices is being implemented?

Which of the following types of risk reducing policies also has the added indirect benefit of cross training
employees when implemented?

In order to prevent and detect fraud, which of the following should be implemented?

The Chief Technical Officer (CTO) has been informed of a potential fraud committed by a database
administrator performing several other job functions within the company. Which of the following is the
BEST method to prevent such activities in the future?

Separation of duties is often implemented between developers and administrators in order to separate
which of the following?

A user in the company is in charge of various financial roles but needs to prepare for an upcoming audit.
They use the same account to access each financial system. Which of the following security controls will
MOST likely be implemented within the company?

Everyone in the accounting department has the ability to print and sign checks. Internal audit has asked
that only one group of employees may print checks while only two other employees may sign the checks.
Which of the following concepts would enforce this process?