Which of the following NIST controls for access control is MOST closely related to the management of policies such as multi-factor authentication and account lockout settings?
Practise this CCSP Cloud Security Prep question free, then download the PDF, watch the video walkthrough, or unlock timed mock exams for the full web bank.
✓ Correct answer: D. Access EnforcementAnswer: Access Enforcement NIST SP 800-53, Security and Privacy Controls for Information Systems and Organizations defines numerous security controls for access control. Among these are: - **Access Enforcement**: Controls that enforce access restrictions based on organizational policies, such as multi-factor authentication and account lockout settings. - **Separation of Duties**: Ensures that no single individual has complete control over all aspects of any critical function or system. - **Least Privilege**: Grants users only the permissions they need to perform their jobs, reducing exposure to potential breaches. - **Auditable Events**: Ensures that security-relevant events are recorded and can be reviewed to detect and address any unusual activity.
Keep practising. Use the free CCSP Cloud Security Prep PDF, watch the YouTube walkthrough, or unlock all 10 web questions with timed mock exams.
Free practice here. Timed mocks when you are ready.
Study the CCSP Cloud Security Prep free question explanations, download the PDF, then unlock timed mock exams on the web when you want exam-day practice.