CompTIA SecurityX (CAS-005) — Question 253

The material findings from a recent compliance audit indicate a company has an issue with excessive permissions. The findings show that employees changing roles or departments results in privilege creep. Which of the following solutions are the best ways to mitigate this issue? (Choose two.)

Answer options

• A. Setting different access controls defined by business area
• B. Implementing a role-based access policy
• C. Designing a least-needed privilege policy
• D. Establishing a mandatory vacation policy
• E. Performing periodic access reviews
• F. Requiring periodic job rotation

Correct answer: B, E

Explanation

The correct answers, B and E, are effective because a role-based access policy helps ensure that users have access only to the resources necessary for their roles, while periodic access reviews help identify and revoke unnecessary permissions. The other options, while useful for security in general, do not directly address the specific issue of privilege creep caused by employees changing roles.