CyberArk Trustee – Privileged Access Management — Question 84

What is the primary purpose of Dual Control?

Answer options

• A. Reduced risk of credential theft
• B. More frequent password changes
• C. Non-repudiation (individual accountability)
• D. To force a 'collusion to commit' fraud ensuring no single actor may use a password without authorization.

Correct answer: D

Explanation

The correct answer, D, highlights that Dual Control is designed to prevent any single individual from misusing a password without the involvement of another party, thus reducing the risk of fraud. Options A, B, and C, while related to security practices, do not capture the essence of the Dual Control principle, which specifically emphasizes the need for multiple parties to be involved in sensitive actions.