Комментарии:
In the "separation of duty" question... there are diff teams which are merged together.
So "separation of duty" as per study guide and CBK is relevant to the same team which should implement this principle to avoid same person completing a critical/imp/sensitive task.
"Least priv" on the other hand refers to "only what is reqd"to complete a job. Hence IT guys will not hv access to payroll.
Answer is "C" since it's a mix of team. If this would be the same team, ans would hv been "D"...
Reg. the Ethical question- I tied replaying many times to understand what the right answer is, however didn't understand whether its is C or D. Option C- would result in loss of life and Option D is not being informed to the whole Management.
Ответить
Thank you for this video. However, need additional explanation why "separation of duties" is preferable to "least access."
Ответить
