Certified Chief Information Security Officer (CCISO) — Question 144

Michael starts a new job and discovers that he has unnecessary access to a variety of systems. Which of the following best describes the problem he has encountered?

Answer options

• A. Rights collision
• B. Excessive privileges
• C. Privilege creep
• D. Least privileges

Correct answer: B

Explanation

The correct answer is B, Excessive privileges, as it directly refers to having more access rights than necessary. Rights collision, C, refers to conflicting permissions, while privilege creep, D, describes the gradual accumulation of privileges over time. Least privileges, A, is a security principle that advocates for minimal access rights, which is the opposite of what Michael is experiencing.