CompTIA Tech+ FC0-U71 Practice Question
In a corporate environment, specific guidelines stipulate that only employees from a designated department are allowed to access sensitive employee records, while the general workforce should have permissions to view standard operational procedures. How should the access controls be configured to align with this policy?
Restrict all document access to top management only, with no access for regular employees
Allow complete access to all documents for every employee to ensure maximum availability
Implement access rules segregating permission to view sensitive documents based on departmental association, while granting universal access to operational guidelines
Apply a blanket policy that requires two-factor authentication for any document access, regardless of document type or employee role