A large multinational company has implemented a new ILM system. During an audit, it was discovered that several users who transferred between departments retained access privileges from their previous roles in addition to receiving new ones. Which of the following approaches would BEST address this issue?
Implement automated permission reassignment with role-based governance
Deploy just-in-time access provisioning for departmental resources
Conduct quarterly user access reviews across relevant departments
Implement separation of duties between access management teams
Role-based access control with automated workflows for role transitions directly addresses the problem of privilege accumulation (or "permission creep") that occurs during department transfers. This solution ensures that when employees move to new roles, the system automatically revokes their previous access rights and grants only those required for their new position, maintaining the principle of least privilege. Quarterly access reviews would eventually catch these issues but don't prevent them proactively. Just-in-time access provisioning focuses on temporary access rather than role transitions. Separation of duties between teams doesn't directly solve the problem of employees retaining old privileges during transfers.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is automated permission reassignment?
Open an interactive chat with Bash
What is role-based governance in access control?
Open an interactive chat with Bash
What does the principle of least privilege mean?
Open an interactive chat with Bash
ISC2 CISSP
Identity and Access Management (IAM)
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access