A Network Administrator was recently promoted to Chief Security Officer at a local university. One
of employee’s new responsibilities is to manage the implementation of an RFID card access
system to a new server room on campus. The server room will house student enrollment
information that is securely backed up to an off-site location.
During a meeting with an outside consultant, the Chief Security Officer explains that he is
concerned that the existing security controls have not been designed properly. Currently, the
Network Administrator is responsible for approving and issuing RFID card access to the server
room, as well as reviewing the electronic access logs on a weekly basis.
Which of the following is an issue with the situation?
A.
Segregation of duties
B.
Undue influence
C.
Lack of experience
D.
Inadequate disaster recovery plan
A
Damnit Miguel, do you have to answer every freakin question? This field is for comments not to answer the questions….Moron.