Limited access to information ensures that only individuals who absolutely need to access specific information can do so. This minimizes the risk of unauthorized disclosure, as employees are restricted from accessing sensitive information that falls outside their job requirements. It’s a fundamental principle of least privilege, which is key in preventing internal and external security breaches.
D is my answer as well. Any other thoughts?
The most effective control in preventing the disclosure of an organization's confidential electronic information would be limited access to information based on employee duties. By restricting access to sensitive information only to employees who require it for their job responsibilities, the risk of unauthorized disclosure is minimized. This can be achieved by implementing proper access control measures, such as role-based access control or user-level permissions.
Nondisclosure agreements between the firm and its employees (option A) can help establish legal consequences for disclosing confidential information, but they alone cannot prevent unauthorized access to such information.
While important, access controls alone might not be enough to prevent disclosure if someone with authorized access decides to share the information.
The question is asking the preventive control for non disclosure of (not accessing) confidential electronic information.
How NDA is preventive? It should be D. Any thoughts?
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Elvoo
1 month agoemtofid
2 months agoElvin
1 year agoKLynn
6 months, 1 week agoKonradK
1 year, 2 months ago