Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25

- Free Preparation Discussions

GIAC Exam GCED Topic 6 Question 58 Discussion

Actual exam question for GIAC's GCED exam

Question #: 58
Topic #: 6

[All GCED Questions]

Which statement below is the MOST accurate about insider threat controls?

AClassification of information assets helps identify data to protect.

BSecurity awareness programs have a minimal impact on reducing the insider threat.

CBoth detective and preventative controls prevent insider attacks.

DRotation of duties makes an insider threat more likely.

ESeparation of duties encourages one employee to control a great deal of information.

Show Suggested Answer

Suggested Answer: A

A company needs to classify its information as a key step in valuing it and knowing where to focus its protection.

Rotation of duties and separation of duties are both key elements in reducing the scope of information access and the ability to conceal malicious behavior.

Separation of duties helps minimize ''empire building'' within a company, keeping one individual from controlling a great deal of information, reducing the insider threat.

Security awareness programs can help other employees notice the signs of an insider attack and thus reduce the insider threat.

Detection is a reactive method and only occurs after an attack occurs. Only preventative methods can stop or limit an attack.

by Rosina at Jan 28, 2025, 04:15 PM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Reita

2 days ago

E is just plain wrong. Separation of duties helps minimize the damage an individual insider can cause, not encourage it.

upvoted 0 times

...

Luis

4 days ago

I disagree with D) Rotation of duties makes an insider threat more likely, as it actually helps reduce the risk of insider threats by spreading responsibilities.

upvoted 0 times

...

Lewis

9 days ago

D is just ridiculous. Rotation of duties actually reduces the risk of insider threats. Whoever came up with that needs to retake their security training.

upvoted 0 times

...

Larae

16 days ago

C is the best answer. Both detective and preventative controls are essential to prevent and detect insider attacks.

upvoted 0 times

...

Lottie

21 days ago

I believe C) Both detective and preventative controls prevent insider attacks is also important, as having a combination of controls is effective.

upvoted 0 times

...

Antonio

22 days ago

I agree with Lawanda, because knowing what data to protect is crucial in preventing insider threats.

upvoted 0 times

...

Wenona

22 days ago

I disagree with B. Security awareness programs play a vital role in reducing insider threats by educating employees.

upvoted 0 times

Myrtie

4 days ago

C) Both detective and preventative controls prevent insider attacks.

upvoted 0 times

...

Darrin

6 days ago

I agree, knowing what information needs to be protected is crucial.

upvoted 0 times

...

Dierdre

10 days ago

A) Classification of information assets helps identify data to protect.

upvoted 0 times

...

...

Lawanda

1 months ago

I think the most accurate statement is A) Classification of information assets helps identify data to protect.

upvoted 0 times

...

Mee

1 months ago

Option A is the most accurate. Classifying information assets is crucial to identify what needs to be protected from insider threats.

upvoted 0 times

Kirk

3 days ago

C) Both detective and preventative controls prevent insider attacks.

upvoted 0 times

...

Tracey

17 days ago

A) Classification of information assets helps identify data to protect.

upvoted 0 times

...

...