8d • 🙋♂️ CISSP
CISSP Practice Question (Domain 5: Identity and Access Management)
During an acquisition integration, you discover the target company grants domain administrator privileges to its entire 12-person IT department. They argue the small team requires broad access for operational efficiency. Your organization's policy enforces least privilege. What should you do FIRST?
A. Immediately revoke domain admin from all subsidiary IT staff and assign role-based access
B. Conduct a privileged access audit to map which admin functions each role actually requires
C. Allow current access with enhanced monitoring until integration is complete
D. Require the subsidiary to adopt your identity governance platform before network integration
Come back for the answer tomorrow, or study more now!
2
20 comments
CISSP Practice Question (Domain 5: Identity and Access Management)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+41
2
+32
3
+29
4
+29
5
+27
Powered by