While reviewing a customer's SDLC, you note that developers cannot commit directly to the production branch; code must be promoted by a separate release team, and elevated system changes require two-person approval. Under the standard information security control taxonomy, which type of control and primary function do these measures best exemplify?
The described safeguards are examples of separation of duties and dual control, both of which fall under administrative (managerial) controls because they are enforced through policy and procedural requirements rather than technology or physical barriers. Their primary goal is to stop unauthorized or unreviewed changes from ever reaching production, making them preventive rather than detective, corrective, or deterrent. Technical detective controls would rely on automated monitoring, physical deterrent controls would address environmental or access barriers, and operational corrective controls focus on restoring normal operations after an incident rather than preventing it in the first place.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are separation of duties and why are they important in information security?
Open an interactive chat with Bash
What is the role of an administrative preventive control in cybersecurity?
Open an interactive chat with Bash
How does dual control differ from separation of duties in security policies?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Information Security and Ethical Hacking Overview
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .