|
|
เตรียมตัวสอบ CISA
Area 02 : Question 14 ( C1 - 14 ) |
|
3
4
|
Question : Which of the following should NOT be a role of the security administrator ?
A) |
Authorizing access rights |
|
B) |
Implementing security rule |
|
C) |
Allocating access rights |
|
D) |
Ensuring that security policies have been authorized by management |
Question |
|
( ) |
|
|
Choice : A |
|
Choice : B |
|
Choice : C |
|
Choice : D |
The Correct Answer is :
A. Authorizing access rights
Explanation :
For proper segregation of duties, the security administrator should not be responsible for authorizing access rights, nor be an end - user.
Authorizing access rights is usually the responsibility of user management, while allocating would be done by the security administrator.
|