The Information Technology (IT) department is best positioned to handle provisioning and deprovisioning of user accounts because it has the technical expertise, tools, and responsibility for managing access to systems and data. IT ensures accounts are created, modified, or removed securely and efficiently. While HR may notify IT of employee changes, IT executes the technical aspects of account management.
While Human Resources (HR) plays a critical role in managing employee lifecycle information (such as hiring, role changes, and terminations), the Information Technology (IT) department is ultimately responsible for the technical execution of user account provisioning and deprovisioning in most organizations. This aligns with CISSP principles of managing access control and system security, which falls under IT’s domain.
So, I think :) IT is the better choice from a CISSP perspective.
D. since when did HR create user accounts? yes the onboard but once they have been cleared by HR. Paperwork is sent to IT DEP to create a user account through IAM and can then be assigned access control or GPO, yay or nay?
If the criterion is HR is "initiating", would it not actually be the hiring manager of the department deciding to hire or fire the employee. Poor question.
In THORS questions it was similar question and the answer was IT Administrator. Reason that HR doesnt touch creaetion of IT accounts. Now it is HT as correct answer... How can I answer correctly???
The business unit that is BEST positioned to initiate provisioning and deprovisioning of user accounts within a large organization is the Information Technology (IT) department (option D).
Provisioning and deprovisioning of user accounts involve managing access to various systems, applications, and resources within an organization. This process typically involves creating user accounts, granting appropriate permissions, and ensuring access is provided based on business requirements and security policies.
The IT department is responsible for managing the organization's technology infrastructure, including user accounts and access controls.
while other business units may have a role in the overall user account lifecycle (e.g., the HR department may provide employee information to initiate account creation), the IT department is typically responsible for implementing and enforcing access controls, managing user accounts, and ensuring the proper provisioning and deprovisioning of user accounts based on organizational policies and procedures.
This section is not available anymore. Please use the main Exam Page.CISSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
DButtare
Highly Voted 2 years, 7 months agojackdryan
1 year, 12 months agofranbarpro
Highly Voted 2 years, 7 months agoHazRic
Most Recent 1 month, 2 weeks agoRVP20
4 months, 1 week agoBietchasup
4 months, 3 weeks agoDtony66
11 months, 3 weeks agosuspense
1 year, 1 month agoshmoeee
1 year, 4 months agoBach1968
1 year, 9 months agovorozco
1 year, 10 months agoIvanchun
2 years, 3 months agoEltooth
2 years, 5 months agoCww1
2 years, 7 months ago