CompTIA Security+ (SY0-501) — Question 920

Which of the following policies would help an organization identify and mitigate potential single points of failure in the company's IT/security operations?

Answer options

• A. Least privilege
• B. Awareness training
• C. Separation of duties
• D. Mandatory vacation

Correct answer: C

Explanation

The correct answer, C. Separation of duties, is critical because it ensures that no single individual has control over all aspects of a task, thereby reducing the risk of a single point of failure. Options A. Least privilege and B. Awareness training are important for security but do not specifically address the identification and mitigation of single points of failure. D. Mandatory vacation can help identify issues but is not a proactive measure for managing single points of failure.