Certified Information Systems Auditor (CISA) — Question 856

Effective separation of duties in an online environment can BEST be achieved by utilizing:

Answer options

• A. appropriate supervision.
• B. access authorization tables.
• C. transaction logging.
• D. written procedure manuals.

Correct answer: B

Explanation

The correct answer is B because access authorization tables help define and control user permissions, ensuring that individuals cannot perform conflicting tasks. The other options, while beneficial, do not directly enforce separation of duties as effectively as access authorization tables do.