Certified in Risk and Information Systems Control (CRISC) — Question 801

An organization is planning to implement a guest wireless network granting internet access only. Which of the following is the MOST important consideration to effectively mitigate the risk of guests gaining access to the organization's internal network?

Answer options

• A. The wireless network is not available outside the office areas.
• B. The networks are properly segregated from each other.
• C. Guests are required to accept terms and conditions.
• D. Only approved equipment is allowed on the guest network.

Correct answer: B

Explanation

The correct answer is B because proper network segregation ensures that guest users cannot access the internal resources of the organization, thus minimizing security risks. Options A, C, and D do not provide adequate protection against unauthorized access to the internal network; they focus on accessibility and compliance rather than actual security measures.