A shipping company wants to ensure that its organizational security policies prevent employees from approving a purchase and then being able to also make that purchase. What type of control should be within those policies to mitigate against that happening
Correct Incorrect Unanswered Report Issue Answer Description
Separation of duties (SoD) is a preventive control that requires certain tasks have to need more than one person to complete. One common example is a policy where the individual that is authorized to write a check isn't also authorized to cash that check.
Wikipedia
Separation of duties (SoD), also known as segregation of duties, is the concept of having more than one person required to complete a task. It is an administrative control used by organisations to prevent fraud, sabotage, theft, misuse of information, and other security compromises. In the political realm, it is known as the separation of powers, as can be seen in democracies where the government is separated into three independent branches: a legislature, an executive, and a judiciary.
Separation_of_duties - Wikipedia, the free encyclopedia Subscribe to avoid duplicate questions and track your progress over time