C795 Chapter 16 UPDATED ACTUAL
Exam Questions and CORRECT Answers
1.Which security principle involves the knowledge and possession of sensitive material as an
aspect of one's occupation?
A. Principle of least privilege
B. Separation of duties
C. Need to know
D. As-needed basis - CORRECT ANSWER - C. Need to know
2.An organization ensures that users are granted access to only the data they need to perform
specific work tasks. What principle are they following?
A. Principle of least permission
B. Separation of duties (SoD)
C. Need to know
D. Job rotation - CORRECT ANSWER - C. Need to know
3.What concept is used to grants users only the rights and permissions they need to complete
their
job responsibilities?
A. Need to know
B. Mandatory vacations
C. Least privilege principle
D. Service-level agreement (SLA) - CORRECT ANSWER - C. Least privilege principle
4.A large organization using a Microsoft domain wants to limit the amount of time users have
elevated privileges. Which of the following security operation concepts can be used to support
this goal?
, A. Principle of least permission
B. Separation of duties
C. Need to know
D. Privileged account management - CORRECT ANSWER - D. Privileged account
management
5.An administrator is granting permissions to a database. What is the default level of access the
administrator should grant to new users in the organization?
A. Read
B. Modify
C. Full access
D. No access - CORRECT ANSWER - D. No access
6.You want to apply the least privilege principle when creating new accounts in the software
development department. Which of the following should you do?
A. Create each account with only the rights and permissions needed by the employee to
perform their job.
B. Give each account full rights and permissions to the servers in the software development
department.
C. Create each account with no rights and permissions.
D. Add the accounts to the local Administrators group on the new employee's computer. -
CORRECT ANSWER - A. Create each account with only the rights and permissions
needed by the employee to
perform their job.
7.Your organization has divided a high-level auditing function into several individual job tasks.
These tasks are divided between three administrators. None of the administrators can perform all
of the tasks. What does this describe?
A. Job rotation
Exam Questions and CORRECT Answers
1.Which security principle involves the knowledge and possession of sensitive material as an
aspect of one's occupation?
A. Principle of least privilege
B. Separation of duties
C. Need to know
D. As-needed basis - CORRECT ANSWER - C. Need to know
2.An organization ensures that users are granted access to only the data they need to perform
specific work tasks. What principle are they following?
A. Principle of least permission
B. Separation of duties (SoD)
C. Need to know
D. Job rotation - CORRECT ANSWER - C. Need to know
3.What concept is used to grants users only the rights and permissions they need to complete
their
job responsibilities?
A. Need to know
B. Mandatory vacations
C. Least privilege principle
D. Service-level agreement (SLA) - CORRECT ANSWER - C. Least privilege principle
4.A large organization using a Microsoft domain wants to limit the amount of time users have
elevated privileges. Which of the following security operation concepts can be used to support
this goal?
, A. Principle of least permission
B. Separation of duties
C. Need to know
D. Privileged account management - CORRECT ANSWER - D. Privileged account
management
5.An administrator is granting permissions to a database. What is the default level of access the
administrator should grant to new users in the organization?
A. Read
B. Modify
C. Full access
D. No access - CORRECT ANSWER - D. No access
6.You want to apply the least privilege principle when creating new accounts in the software
development department. Which of the following should you do?
A. Create each account with only the rights and permissions needed by the employee to
perform their job.
B. Give each account full rights and permissions to the servers in the software development
department.
C. Create each account with no rights and permissions.
D. Add the accounts to the local Administrators group on the new employee's computer. -
CORRECT ANSWER - A. Create each account with only the rights and permissions
needed by the employee to
perform their job.
7.Your organization has divided a high-level auditing function into several individual job tasks.
These tasks are divided between three administrators. None of the administrators can perform all
of the tasks. What does this describe?
A. Job rotation
