ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CCSP All Questions

View all questions & answers for the CCSP exam
Go to Exam

Exam CCSP topic 1 question 456 discussion

Actual exam question from ISC's CCSP
Question #: 456
Topic #: 1
[All CCSP Questions]

Countermeasures for protecting cloud operations against internal threats include all of the following except:

  • A. Mandatory vacation
  • B. Least privilege
  • C. Separation of duties
  • D. Conflict of interest
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
Conflict of interest is a threat, not a control.
by bessonf at Dec. 9, 2020, 5:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MaciekMT
1 month, 3 weeks ago
Selected Answer: D
Countermeasures for protecting cloud operations against internal threats typically include security policies, access controls, and operational safeguards. Mandatory vacation, least privilege, and separation of duties are all effective internal security measures. However, "conflict of interest" is not a direct countermeasure—it is a business ethics issue, not a security control. Why Not "Conflict of Interest"? A conflict of interest refers to a situation where personal or financial interests could interfere with professional duties. While conflicts of interest can lead to insider threats, they are not a technical or procedural countermeasure like the other options.
upvoted 1 times
...
ccas
5 months ago
A, B and C are things a company puts in place to protect against internal threats. Conflict of interest is something that cannot be controlled by the company. It’s a threat they can only react to if it happens.
upvoted 2 times
...
bessonf
1 year, 4 months ago
I do not understand how "mandatory vacation" is protecting cloud operation :-)
upvoted 3 times
xaccan
9 months, 3 weeks ago
Best practices to support CIA Separation of Duties: Prevents any one person from becoming too powerful within an organization. This policy also provides singleness of focus. For instance, a network administrator who is concerned with providing users access to resources should never be the security administrator. This policy also helps prevent collusion as there are many individuals with discrete capabilities. Separation of Duties is a preventative control. Mandatory Vacations: Prevents an operator from having exclusive use of a system. Periodically, that individual is forced to take a vacation and relegate control of the system to someone else. This policy is a detective control. Job rotation: Similar in purpose to mandatory vacations, but with the added benefit of cross-training employees. Least privilege: Allowing users to have only the required access to do their jobs. Need to know: In addition to clearance, users must also have “need to know” to access classified data. Dual control: Requiring more than one user to perform a task.
upvoted 4 times
...
ludoodul
1 year, 3 months ago
u shud do CISSP before CCSP to get answer to such questions.
upvoted 4 times
...
xaccan
9 months, 3 weeks ago
you need to study CISSP to know why manadatory vacation is correct
upvoted 2 times
...
pooppants
1 year ago
its to reduce single point of failures. Job rotation would be a better option
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago