If different user groups with different security access levels need to access the same information, which of the following actions should management take?Group of answer choicesDecrease the security level of the information to ensure accessibility and usability of the information.Decrease the classification label on the information.Require specific written approval each time an individual needs to access the informationIncrease the security controls on the information.
Question
If different user groups with different security access levels need to access the same information, which of the following actions should management take?Group of answer choicesDecrease the security level of the information to ensure accessibility and usability of the information.Decrease the classification label on the information.Require specific written approval each time an individual needs to access the informationIncrease the security controls on the information.
Solution
The best action for management to take in this situation would be to "Increase the security controls on the information." This is because it allows for different user groups with different security access levels to access the same information, while still maintaining the necessary security measures.
Decreasing the security level or the classification label on the information could potentially expose sensitive data to unauthorized individuals. Requiring specific written approval each time an individual needs to access the information could be inefficient and slow down the workflow.
Therefore, increasing the security controls on the information would be the most effective way to ensure that only authorized individuals can access the information, while still allowing for different levels of access depending on the user group.
Similar Questions
Question 81 ptsWhat type of access control approaches is suitable when several people in the organization perform the same role or task? Group of answer choicesLattice-based access controlDiscretionary access controlMandatory access controlRole/task-based access control
Which type of group can be used for controlling access to objects?answerDistributionDACLAuthorizationSecurity
Which of the following objects identifies a set of users with similar access needs?answerGroupDACLPermissionsSACL
Which of the following security design principles says ‘access decisions should be based on permission rather than exclusion’?Group of answer choicesFail-safe defaultsComplete mediationSeparation of privilegeLeast Astonishment
Which of the following access control approaches provides the ability to share resources or information in a peer-to-peer configuration?Group of answer choicesRole-basedDiscretionaryMandatoryNon-Discretionary
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.