ISA/IEC 62443 Cybersecurity Fundamentals Specialist — Question 50

In a defense-in-depth strategy, what is the purpose of role-based access control?

Answer options

• A. Ensures that users can access systems from remote locations
• B. Ensures that users can access only certain devices on the network
• C. Ensures that users can access only the functions they need for their job
• D. Ensures that users correctly manage their username and password

Correct answer: C

Explanation

The correct answer, C, is accurate because role-based access control is designed to grant users access solely to the functions they require to perform their job duties. Options A and B are incorrect as they focus on access to systems and devices rather than job-related functions, while option D pertains to password management rather than access control.