Question

Bill is promoted to a position that has an elevated level of trust. He started with the organization in an entry-level position, and then moved to a supervisory position and finally to a managerial role. This role entails that the employee trains other employees and has a deep understanding of how the department functions. Which of the following actions should be taken that provide adequate access for Bill without making him a target of suspicious activity?

a. Because Bill needs to train other employees, he should have the access granted in his previous roles.
b. Bill should be granted access based on his current and past roles.
c. Bill should request that his access be downgraded.
d. Bill should have prior access removed to ensure separation of duties and avoid future instances of security risk.

Answer 1

Answer: D. Bill should have prior access removed to ensure separation of duties and avoid future instances of security risk

Step-by-step explanation:

The action that should be taken which provides adequate access for Bill without making him a target of suspicious activity is that Bill should have prior access removed to ensure separation of duties and avoid future instances of security risk.

Separation of duties simply means that an individual should not have control over the transactions in the company.

he reconcile a transaction. This is vital in reducing risk in an organization.

Since Bill started with the organization in an entry-level position, after which he moved to the supervisory position and finally to a managerial role, his prior access should be removed.