🔥 40% Off Crucial Exams Memberships — This Week Only

2 days, 12 hours remaining!
Crucial Exams

ISC2 Systems Security Certified Practitioner (SSCP) Practice Question

An international company syncs its on-premises Active Directory with a cloud IGA platform to create accounts and assign role-based entitlements. Audits show job-changers keep unnecessary privileges for months. The CISO wants an automated control that detects entitlement creep and ensures only justified access is retained, aligning with the Monitoring, Reporting, and Maintenance phase of the identity-management lifecycle. Which solution best meets the requirement?

  • Enable risk-based multi-factor authentication to require additional factors when users log in from unfamiliar locations, and generate reports of all elevated logons.

  • Configure the IGA tool to run quarterly access-recertification campaigns that present each user's current roles to their managers for attestation and automatically revoke entitlements that are not reapproved.

  • Migrate all business applications to SAML-based single sign-on while keeping existing group memberships and manual provisioning processes unchanged.

  • Tighten the enterprise password policy to mandate at least 14-character complex passwords and force rotation every 60 days, then log violations to the SIEM.

ISC2 Systems Security Certified Practitioner (SSCP)
Access Controls
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot