Which statement best reflects recommended identity management practice?

Prepare for the Network Security Examination by mastering key concepts in cybersecurity. Utilize interactive questions and detailed explanations to enhance your knowledge. Excel in your exam with our comprehensive preparation resources!

Multiple Choice

Which statement best reflects recommended identity management practice?

Explanation:
Identities should be managed by the people closest to the situation. This makes sense because the individuals who are closest to the work—the resource owners, department heads, or team leads—understand who needs access, what level of access is appropriate, and for how long. They can grant permissions quickly when a project starts, adjust access as roles evolve, and revoke access promptly when someone changes roles or leaves the organization. While IT provides the system to manage identities and enforce security policies, day-to-day provisioning and deprovisioning work is most effective when driven by those who have direct knowledge of the business needs. Relying on central IT alone can create bottlenecks and may lack the specific context required to assign correct permissions. Outsourcing identity management to vendors can reduce visibility and control, increasing risk. Having senior executives manage identities generally lacks the hands-on context needed for timely and precise access decisions.

Identities should be managed by the people closest to the situation. This makes sense because the individuals who are closest to the work—the resource owners, department heads, or team leads—understand who needs access, what level of access is appropriate, and for how long. They can grant permissions quickly when a project starts, adjust access as roles evolve, and revoke access promptly when someone changes roles or leaves the organization. While IT provides the system to manage identities and enforce security policies, day-to-day provisioning and deprovisioning work is most effective when driven by those who have direct knowledge of the business needs.

Relying on central IT alone can create bottlenecks and may lack the specific context required to assign correct permissions. Outsourcing identity management to vendors can reduce visibility and control, increasing risk. Having senior executives manage identities generally lacks the hands-on context needed for timely and precise access decisions.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy