CompTIA Security+ (SY0-501) — Question 989

A security administrator in a bank is required to enforce an access control policy so no single individual is allowed to both initiate and approve financial transactions. Which of the following BEST represents the impact the administrator is deterring?

Answer options

• A. Principle of least privilege
• B. External intruder
• C. Conflict of interest
• D. Fraud

Correct answer: D

Explanation

The correct answer, Fraud, is the primary concern when an individual can both initiate and approve transactions, as this could lead to unauthorized or deceptive activities. The Principle of least privilege ensures minimal access, but does not directly address the issue at hand. An external intruder refers to outside threats, while a conflict of interest relates to personal gain, which is not the main focus of the access control policy being discussed.