Discuss the four practical things that should be substantiated in the expert judgment.
What will be an ideal response?
That judgment should substantiate four practical things. First, it has to be confirmed that all employees maintain the level of privilege that is consistent with their own levels of certifiable trustworthiness, and that the authorizations for those privileges are up to date. Second, it has to be confirmed that all of the privileges that are assigned conform to the principles of least privilege and separation of duties. Third, it has to be confirmed that the privileges that have been assigned to each individual continue to be appropriate to the job function involved. Finally, it has to be confirmed that all of the required security training for each employee has been successfully completed.
You might also like to view...
When Ben lists the files on a Linux system, he sees a set of attributes as shown in the following image. The letters rwx indicate different levels of what?
A. Identification B. Authorization C. Authentication D. Accountability
A digital ID is purchased from ____.
A. ?the government B. ?your employer C. ?a certificate authority D. ?eBay