Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC Exam GCED Topic 3 Question 36 Discussion

Actual exam question for GIAC's GCED exam
Question #: 36
Topic #: 3
[All GCED Questions]

Which statement below is the MOST accurate about insider threat controls?

Show Suggested Answer Hide Answer
Suggested Answer: A

A company needs to classify its information as a key step in valuing it and knowing where to focus its protection.

Rotation of duties and separation of duties are both key elements in reducing the scope of information access and the ability to conceal malicious behavior.

Separation of duties helps minimize ''empire building'' within a company, keeping one individual from controlling a great deal of information, reducing the insider threat.

Security awareness programs can help other employees notice the signs of an insider attack and thus reduce the insider threat.

Detection is a reactive method and only occurs after an attack occurs. Only preventative methods can stop or limit an attack.


by Stevie at Apr 09, 2024, 06:09 PM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Kent
6 months ago
I see your point, Nohemi. But I think rotation of duties can also be important in preventing insider threats. So, I would go with D) Rotation of duties makes an insider threat more likely.
upvoted 0 times
...
Nohemi
6 months ago
I disagree. I believe the correct answer is C) Both detective and preventative controls prevent insider attacks. They work hand in hand to mitigate risks.
upvoted 0 times
...
Jacinta
6 months ago
I agree with Levi. Security awareness programs can also be helpful, but they may not have the most impact on reducing insider threats.
upvoted 0 times
...
Levi
6 months ago
I think the correct answer is A) Classification of information assets helps identify data to protect.
upvoted 0 times
...
Yuki
6 months ago
I disagree with D, rotating duties can actually help reduce insider threats by limiting opportunities for malicious behavior.
upvoted 0 times
...
Gladys
6 months ago
D) Rotation of duties makes an insider threat more likely.
upvoted 0 times
...
Olive
6 months ago
I agree, having a combination of detective and preventative controls is key to mitigating insider threats.
upvoted 0 times
...
Gladys
6 months ago
C) Both detective and preventative controls prevent insider attacks.
upvoted 0 times
...
Lenna
7 months ago
I think A is the correct answer because knowing what information is important is crucial for implementing insider threat controls.
upvoted 0 times
...
Dorothy
7 months ago
A) Classification of information assets helps identify data to protect.
upvoted 0 times
...
Leonora
8 months ago
I'm going with A). It's all about identifying the data that needs to be protected. That's the foundation for effective insider threat controls.
upvoted 0 times
...
Gertude
8 months ago
Haha, E) is a good one. Encouraging one employee to control a great deal of information? That's just asking for trouble. Talk about a recipe for disaster!
upvoted 0 times
...
Lavonna
8 months ago
D)? Seriously? Rotation of duties makes an insider threat more likely? That's just backwards. Separation of duties is where it's at, folks.
upvoted 0 times
...
Dominque
8 months ago
B) is just plain wrong. Security awareness programs are crucial for reducing the insider threat. How else are employees going to know what to look out for?
upvoted 0 times
Omega
6 months ago
E) Separation of duties encourages one employee to control a great deal of information.
upvoted 0 times
...
Marylou
7 months ago
C) Both detective and preventative controls prevent insider attacks.
upvoted 0 times
...
Sheron
7 months ago
A) Classification of information assets helps identify data to protect.
upvoted 0 times
...
...
Emelda
8 months ago
Hmm, I'm not so sure. I think C) is the best answer - both detective and preventative controls are important for preventing insider attacks. You need a multi-layered approach, you know?
upvoted 0 times
...
Stevie
8 months ago
Oh, this is a tricky one! I think the MOST accurate statement is A) - classification of information assets helps identify data to protect. That's key for mitigating insider threats, isn't it?
upvoted 0 times
...

Save Cancel