B.  Preventing fraud

                    C.  Encouraging collusion


                    D.  Correcting incidents
                5.  A financial organization commonly has employees switch duty

                    responsibilities every six months. What security principle are they
                    employing?

                    A.  Job rotation

                    B.  Separation of duties

                    C.  Mandatory vacations

                    D.  Least privilege

                6.  Which of the following is one of the primary reasons an
                    organization enforces a mandatory vacation policy?


                    A.  To rotate job responsibilities

                    B.  To detect fraud

                    C.  To increase employee productivity

                    D.  To reduce employee stress levels

                7.  An organization wants to reduce vulnerabilities against fraud from
                    malicious employees. Of the following choices, what would help
                    with this goal? (Choose all that apply.)

                    A.  Job rotation

                    B.  Separation of duties


                    C.  Mandatory vacations

                    D.  Baselining

                8.  Of the following choices, what is not a valid security practice
                    related to special privileges?

                    A.  Monitor special privilege assignments.

                    B.  Grant access equally to administrators and operators.

                    C.  Monitor special privilege usage.