A technician assists Joe, an employee in the Sales department, who needs access to the client database by granting Joe administrator privileges. Later, Joe discovers he has access to the salaries in the payroll database.Which of the following security practices was violated?answerEntry control rosterMultifactor authenticationStrong password policyPrinciple of least privilege

Most of the employees and possibly even certain executives may not be given access. To ensure these policies are followed, strict regulations must be in place to determine who can see what. This is an example to ensure:Question 5Select one:a.Non-repudiationb.Integrityc.Confidentiality

Rebecca, a security professional, was instructed to limit employees’ access to critical resources. For this purpose, she implemented an access principle that provides permission to access only necessary resources that are required for their job tasks. The permissions can be extended later based on changes in their job roles. Identify the access principle implemented by Rebecca in the above scenario.Group of answer choicesPrinciple of least privilege (POLP)Rule-based access controlNeed-to-knowSeparation of duties (SoD)

Question 3Your supervisor asks you to audit user permissions for payroll data to ensure no unauthorized employees have access to it. Which security domain is this audit related to?1 pointSecurity assessment and testingSecurity operationsSoftware development securityAsset security

Fill in the blank: A security professional uses _____ to verify that an employee has permission to access a resource.1 pointadmissionencryptionauthorizationintegrity

Who should have access to the security policy?a.Senior managementb.IT staffc.Everyoned.Business users