13d • 🙋♂️ CISSP
CISSP Practice Question (Domain 5: Identity and Access Management - AI Exam Guidance)
Your organization deploys an autonomous AI agent that queries multiple internal data repositories to generate executive reports. The development team requests broad read access "so the model can learn what's relevant." As the security architect, what is the MOST appropriate approach?
A. Grant read-only access to all repositories and log every query for review
B. Provision a non-human identity with least-privilege, task-scoped entitlements
C. Route all agent queries through a human-approved request workflow
D. Use the developer's service account credentials for traceability
Come back for the answer tomorrow, or study more now!
3
21 comments
CISSP Practice Question (Domain 5: Identity and Access Management - AI Exam Guidance)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+49
2
+40
3
+23
4
+22
5
+15
Powered by