|
|
เตรียมตัวสอบ CISA
| Area 02 : Question 14 ( C1 - 14 ) |
|
3
4
|
Question : Which of the following should NOT be a role of the security administrator ?
| A) |
Authorizing access rights |
| |
| B) |
Implementing security rule |
| |
| C) |
Allocating access rights |
| |
| D) |
Ensuring that security policies have been authorized by management |
| Question |
| |
( ) |
|
| |
| Choice : A |
| |
| Choice : B |
| |
| Choice : C |
| |
| Choice : D |
The Correct Answer is :
A. Authorizing access rights
Explanation :
For proper segregation of duties, the security administrator should not be responsible for authorizing access rights, nor be an end - user.
Authorizing access rights is usually the responsibility of user management, while allocating would be done by the security administrator.
|
