A marketing firm has recently hired an analyst who will be working with proprietary client data. What is the most critical action to perform from a security standpoint as part of the onboarding process for this new role?
Implement role-based access control to proprietary and sensitive client data systems.
Issue security badges for physical access to the firm's offices and client meeting rooms.
Ensure completion of a general training program that includes corporate culture and policies.
Provide them with a company email address and user profile for day-to-day communication and tasks.
Implementing role-based access control is critical to ensuring that the new analyst has access only to the information necessary to perform their specific job functions, which maintains the principle of least privilege and supports organizational security. Providing a company email or user profile is part of standard onboarding but does not address security concerns regarding access to confidential information. Issuing security badges allows for physical access but is not sufficient for regulating access to digital resources. The completion of general training, while important for overall employee integration, does not directly concern the regulation of access to sensitive data.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is role-based access control (RBAC)?
Open an interactive chat with Bash
What does the principle of least privilege mean?
Open an interactive chat with Bash
Why is it important to protect proprietary client data?