exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam

Exam CISA topic 1 question 1137 discussion

Actual exam question from Isaca's CISA
Question #: 1137
Topic #: 1
[All CISA Questions]

An IS auditor finds a segregation of duties issue in an enterprise resource planning (ERP) system. Which of the following is the BEST way to prevent the misconfiguration from recurring?

  • A. Monitoring access rights on a regular basis
  • B. Referencing a standard user-access matrix
  • C. Correcting the segregation of duties conflicts
  • D. Granting user access using a role-based model
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
Community vote distribution
D (100%)

Comments

Chosen Answer:
This is a voting comment. You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
saado9
Highly Voted 11 months, 3 weeks ago
why not D. Granting user access using a role-based model ?
upvoted 5 times
...
FAGFUR
Most Recent 4 months ago
Selected Answer: D
The best way to prevent the recurrence of segregation of duties issues in an ERP system is to implement a role-based access control (RBAC) model. In a role-based model, users are assigned roles based on their job functions, and each role is associated with specific access rights and permissions. This helps in preventing conflicts of duties by ensuring that individuals only have access to the resources necessary for their specific roles.
upvoted 3 times
...
SuperMax
5 months, 2 weeks ago
Selected Answer: D
D: Granting user access using a role-based model. Granting user access using a role-based model: This is the best approach because it involves designing access control based on roles and responsibilities within the organization. A well-designed role-based model should inherently address segregation of duties issues by defining roles that have specific access permissions that align with job functions. By implementing a role-based access control system, you can prevent users from having conflicting permissions, reducing the risk of segregation of duties issues from occurring in the first place. So, option D is the most proactive and effective way to prevent the misconfiguration from recurring.
upvoted 4 times
...
hoho
9 months, 1 week ago
On B, standard UA Matrix will help to prevent SoD effective
upvoted 1 times
...
BabaP
10 months, 1 week ago
Selected Answer: D
I think D
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
CS0-003
Milan, 1 minute ago