A security analyst discovers that an employee has been sharing login credentials with coworkers. Which policy violation is this?
Trap 1: Remote Access Policy violation
This policy governs secure remote connections, not credential sharing.
Trap 2: Incident Response Policy violation
This policy outlines steps for handling incidents, not user behavior.
Trap 3: Data Classification Policy violation
This policy defines data sensitivity labels, not credential sharing.
- A
Remote Access Policy violation
Why wrong: This policy governs secure remote connections, not credential sharing.
- B
Incident Response Policy violation
Why wrong: This policy outlines steps for handling incidents, not user behavior.
- C
Data Classification Policy violation
Why wrong: This policy defines data sensitivity labels, not credential sharing.
- D
Acceptable Use Policy violation
Sharing credentials is a misuse of company resources, violating the Acceptable Use Policy.