ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question
During a security awareness briefing, the IT security lead explains that administrators handle privileged tasks, while regular employees must safeguard their own credentials. Which activity is the responsibility of a general user rather than a system administrator?
Configuring role-based access control policies in an identity management system
Safeguarding the confidentiality of the user's own password
Installing critical operating-system updates on production servers
Reviewing server audit logs for indicators of compromise
General users are accountable for protecting the secrecy of their own credentials. This includes choosing strong passwords and keeping them confidential. In contrast, installing server patches, reviewing server audit logs, and configuring role-based access control policies require elevated privileges and fall under the duties of system administrators.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are strong password practices?
Open an interactive chat with Bash
What does role-based access control (RBAC) mean?
Open an interactive chat with Bash
Why are server audit logs important?
Open an interactive chat with Bash
How can users safeguard the confidentiality of their passwords effectively?
Open an interactive chat with Bash
What is role-based access control (RBAC) and why is it not a user's responsibility?
Open an interactive chat with Bash
What are server audit logs, and why are they reviewed by system administrators?
Open an interactive chat with Bash
ISC2 Certified Secure Software Lifecycle Professional (CSSLP)