Exam SY0-501 topic 1 question 110 discussion

Shouldn't the answer be B? Separation of duties would prevent fraud but not detect it .Mandatory vacations would detect malicious activity when it occurs.

A because IT and Finance are different duties

The question is: Which of the following practices should the manager implement to validate the concern? So the concern is there and now that need to validate/disprove it... Mandatory vacations - would a lot the company time to audit his work and discover/validate the concern. Separation of duties - would be able to prevent this from occurring in the future. B. Mandatory vacations

If you send the suspected insider on a vacation (implementing mandatory vacation for all employees) and the transactions stop then you will have validate the suspicions of the insider threat actor

Separation of Duties would prevent this to happend, what it's needed here is to "validate the concern", Mandatory Vacations are used to detect fraud, or suspicious activity.

It is separation of duties...IT guy with DB permissions...separation of duties would revoke his DB access and only grant to DB admins.

"knowingly modifying" key word. A. Separation of Duties Separation of duties -- is a means of establishing checks and balances against the possibility that critical systems or procedures can be compromised by insider threats. Separation of duties states that no one person should have too much power or responsibility. Duties and responsibilities should be divided among individuals to prevent ethical conflicts or abuse of powers. Duties such as authorization and approval and design and development should not be held by the same individual, because it would be far too easy for that individual to exploit an organization into using only specific software that contains vulnerabilities or taking on projects that would be beneficial to that individual.

Lead2Pass, boasting 96% accuracy and verified by Security Professionals and charging me 100$ says "B Mandatory Vacay"...going w B!! Final Answer!!

It's def B. Seperation of duties can't necessary validate the concern. Mandatory vacations are designed to discover fraud wrongdoing etc

They need to start putting these answers together as both Seperation of duties and Mandatory Vacations helps detect fraud , this test is starting to piss me off. Comptia stop putting answers on test like this. I'm going to let them know how I feel about this on the comments section of the test.

It is possible that all this companies IT personnel may have this access, so mandatory vacations wouldn't solve this. What this problem needs is for IT to only have access to financial databases when needed, ideally 'least privilege' but also separation of duties, which would possibly allocate a DB Admin role, not accessible to all IT personnel, and only granted for specific issue resolution.

Has to be B. If he has elevated access, that won't prevent him from accessing the database even if seperation of duties occurred. If he is on vacation, then we'll know who's modifying the transactions.

This is definitely Mandatory Vacations so that the Manager can detect/ investigate on the issue.

Even if there was a separation of duties, if the IT has elevated DB access, he can always access the financial transactions no matter what. I think B is the correct answer here. Let him have a mandatory vacation and check records for validation.

I think B is correct

The thing here is validation. The manager needs to validate his concern therefore a mandatory vacation would identify the validity of the managers suspicion.

Separation of duties policies also apply to IT personnel. As an example, a group of IT administrators may be assigned responsibility for maintaining a group of database servers. However, they would not be granted access to security logs on these servers. Instead, security administrators regularly review these logs, but these security administrators will not have access to data within the databases. Darril Gibson CompTIA Security+ SY0-501 Study Guide