What is the concept of separation of duties and provide an example?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Get ready for your WGU ITEC2034 D385 Software Security and Testing Test. Study with multiple choice questions that include hints and explanations. Boost your confidence for your exam day!

Multiple Choice

What is the concept of separation of duties and provide an example?

Explanation:
Separation of duties is a control designed to reduce the risk of fraud and mistakes by ensuring no single person controls all aspects of a critical process. By dividing responsibilities, errors or intentional misuse can be caught through independent checks. In software development, this is typically shown by keeping code creation, testing, and production deployment in separate hands. For example, one person writes the code, another reviews or tests it, and a different releases it to production, often with formal approvals and change logs. This separation creates checks and balances, making it harder for someone to slip in bad code or go unnoticed. It’s reinforced by access controls and least-privilege practices so each role has only the permissions needed to do its part. The other options would undermine this control by concentrating power, removing checks, or letting a single person handle everything.

Separation of duties is a control designed to reduce the risk of fraud and mistakes by ensuring no single person controls all aspects of a critical process. By dividing responsibilities, errors or intentional misuse can be caught through independent checks.

In software development, this is typically shown by keeping code creation, testing, and production deployment in separate hands. For example, one person writes the code, another reviews or tests it, and a different releases it to production, often with formal approvals and change logs. This separation creates checks and balances, making it harder for someone to slip in bad code or go unnoticed. It’s reinforced by access controls and least-privilege practices so each role has only the permissions needed to do its part. The other options would undermine this control by concentrating power, removing checks, or letting a single person handle everything.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy