Exam 712-50 topic 1 question 159 discussion

Both A and B looks correct. But B is more realistic given the context.

Proper Separation of Duties: Separation of duties (SoD) is a key principle in internal controls that ensures no single individual has control over all aspects of any critical function or process. This principle helps prevent fraud, errors, and conflicts of interest. Information Security and Identity Access Management (IAM): These two teams perform distinct functions. Information Security is responsible for the overall security posture, policies, and incident response, while IAM focuses specifically on managing user identities and access privileges. Separating these duties helps ensure that no single team has too much control over both the security policies and the access to critical systems.

B is correct

The correct answer is B. Information Security and Identity Access Management teams perform two distinct functions. Proper separation of duties is an important principle in the corporate environment to ensure accountability, prevent conflicts of interest, and reduce the risk of fraud or unauthorized activities. The separation of duties involves dividing responsibilities among different individuals or teams to create checks and balances. By separating the responsibilities of Information Security and Identity Access Management teams, it ensures that there is a clear distinction between the functions related to securing information and managing user access Option A is not a complete separation as both Information Security and Network teams may have overlapping responsibilities and access to sensitive information