Controls that are tied to the position assigned to and performed by an individual user in the organization are called ____.
A) mandatory access controls
B) lattice-based access controls
C) role-based access controls
D) rule-based access controls

Question

Quizplus · Accepted Answer

Role-based access controls are tied to the position or role of a user within an organization. Access is granted based on the functions and responsibilities associated with that role, rather than individual requests or permissions. This helps to streamline the access management process and ensure that users only have access to the resources they need to perform their job duties. Mandatory access controls (A) are enforced by system administrators and apply to all users, while lattice-based access controls (B) use a combination of hierarchies and categories to determine access rights. Rule-based access controls (D) use a set of predefined rules to determine access, rather than role or position.

Controls That Are Tied to the Position Assigned to and Performed