If different user groups with different security access levels need to access the same information, which of the following actions should management take?Group of answer choicesDecrease the security level of the information to ensure accessibility and usability of the information.Increase the security controls on the information.Require specific written approval each time an individual needs to access the informationDecrease the classification label on the information
Question
If different user groups with different security access levels need to access the same information, which of the following actions should management take?Group of answer choicesDecrease the security level of the information to ensure accessibility and usability of the information.Increase the security controls on the information.Require specific written approval each time an individual needs to access the informationDecrease the classification label on the information
Solution
The best action for management to take in this situation would be to "Increase the security controls on the information." This ensures that each user group only has access to the information that they are authorized to see, maintaining the security and integrity of the information.
Decreasing the security level or the classification label on the information could potentially expose sensitive data to unauthorized users. Requiring specific written approval each time an individual needs to access the information could be impractical and inefficient, especially in a large organization where many users may need to access the information frequently.
Therefore, increasing the security controls allows for different access levels for different user groups, ensuring that each group can access the information they need while keeping the information secure.
Similar Questions
Question 81 ptsWhat type of access control approaches is suitable when several people in the organization perform the same role or task? Group of answer choicesLattice-based access controlDiscretionary access controlMandatory access controlRole/task-based access control
Which of the following objects identifies a set of users with similar access needs?answerGroupDACLPermissionsSACL
Which type of group can be used for controlling access to objects?answerDistributionDACLAuthorizationSecurity
Which of the following security design principles says ‘access decisions should be based on permission rather than exclusion’?Group of answer choicesFail-safe defaultsComplete mediationSeparation of privilegeLeast Astonishment
Which of the following access control approaches provides the ability to share resources or information in a peer-to-peer configuration?Group of answer choicesRole-basedDiscretionaryMandatoryNon-Discretionary
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.