A user in the company is in charge of various financial roles but needs to prepare for an upcoming audit. They
use the same account to access each financial system. Which of the following security controls will MOST likely
be implemented within the company?
Account lockout policy
Account password enforcement
Password complexity enabled
Separation of duties
Separation of duties means that users are granted only the permissions they need to do their work and no
more. More so it means that there is differentiation between users, employees and duties per se which form
part of best practices.