Zero Trust security means that no one is trusted by default from inside or outside the network
B.
Zero Trust states that no users should be given enough privileges to misuse the system on their own
C.
Zero Trust addresses access control and states that an individual should have only the minimum access privileges necessary to perform specific tasks
D.
Zero Trust states that unless a subject is given explicit access to an object, it should be denied access to that object
Answer:
A
Question 93
What is the practice of giving an employee access to only the resources needed to accomplish their job?
Options:
A.
principle of least privilege
B.
organizational separation
C.
separation of duties
D.
need to know principle
Answer:
A
Explanation:
Explanation:
The principle of least privilege is a security best practice that states that an employee should have access to only the minimum amount of resources and permissions needed to perform their job function. This principle reduces the attack surface and the potential damage that can be caused by a compromised account, a malicious insider, or human error. The principle of least privilege can be enforced by using role-based access control (RBAC) and regular audits. References: Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) - Cisco, page 1-10; 200-201 CBROPS - Cisco, exam topic 1.2.a