You are evaluating Zentech Corp, a company that operates a cloud services platform handling sensitive data for numerous clients. During your review, you discover that marketing employees were able to access protected client data files. The access logs show unusual activity from multiple accounts in the "Marketing_Team" group accessing data intended only for the "IT_Security" group. Which error likely led to this unauthorized access?
Practise this Certified CMMC Assessor (CCA) Exam question free, then download the PDF, watch the video walkthrough, or unlock timed mock exams for the full web bank.
AIntegration with third-party apps without proper vetting
BMisconfigured role group policies
CWeak network encryption settings
DInsufficient employee training on data classification
✓ Correct answer: B. Misconfigured role group policiesMisconfigured role group policies led to the marketing employees gaining access to data reserved for the IT security team. Such an error indicates improper separation between role permissions, allowing crossover of access rights that violate least privilege principles. Correctly categorizing and assigning permissions is crucial to preventing unauthorized data access.
Keep practising. Use the free Certified CMMC Assessor (CCA) Exam PDF, watch the YouTube walkthrough, or unlock all 10 web questions with timed mock exams.
Free practice here. Timed mocks when you are ready.
Study the Certified CMMC Assessor Prep free question explanations, download the PDF, then unlock timed mock exams on the web when you want exam-day practice.