WGU C845 - SSCP Study Guide PT3. Exam Questions and answers, 100% Accurate. VERIFIED.

WGU C845 - SSCP Study Guide PT3. Exam Questions and answers, 100% Accurate. VERIFIED. How is separation of duties typically implemented? Segment administrative tasks into compartments, and then assign one or more distinct administrators into each compartment. Which of the following is not a security category? Remuneration Nonrepudiation ensures which of the following? That the sender cannot deny their actions What is the foundational premise of risk management? There is always some level of risk. What is the definition of the principle of least privilege? Granting users only the minimum privileges needed to accomplish assigned work tasks Which of the following is a security program used in many banks to verify the ethics and job performance of a bank manager? Mandatory vacation To prevent any one person from having too much control or power, or performing fraudulent acts, which of the following solutions should not be implemented? Job rotation What is a restriction placed on users that denies them access to resources on the weekends? Time of day restriction Which of the following provides a catchall and prevents an action from being taken after everything else has allowed through on a network? Implicit deny Which option is not a part of the prevention primary security category? Using an alternate site after a disaster Which of the following is a nontechnical means of enforcing security? User training During an access system audit, a number of active accounts were discovered from employees who had left the company over the past two years. What are these accounts called? Orphan accounts How is confidentiality different from privacy? Confidentiality relates to the control of information in order to prevent disclosure to unauthorized entities. How can integrity be enforced or assessed across an entire computer system? Compare a baseline of hardware settings and software configuration against a live system. What is the most important foundational security concept upon which most other security ideas and solutions are based? Implicit deny Which term is used to indicate the function of access control or define which subjects can perform various tasks on specific objects? Authorization What are the three categories of controls? Physical, logical (technical), and administrative Why do employees have to read and sign an Authorized Use Policy (AUP) before they are granted access to the IT network? To remind them of their responsibilities and that they will be held accountable for their activities Why are locks used on doors in secured areas? To keep people honest Which of the following best describes the time that it takes to register with a biometric system, by providing samples of a personal characteristic? Enrollment time Which of the following is true about biometric scan technology? A number of points extracted from the item scanned are stored. Crossover error rate (CER) refers to which of the following graphical inte