Ask Question
2 March, 13:29

You work for a company that is growing. Originally, all the users in all departments had access to all the data in the database. It is considered a security risk. What is an appropriate action to reduce the risk?

+1
Answers (2)
  1. 2 March, 14:58
    0
    Authorization levels (privileges) need to be set for the users in the company.

    Explanation:

    Users need to be classified according to their departments and their position. Each group should see only related data, so their authorizations need to be done accordingly.

    Also managers and staff should have different levels of reach to the data. Thus their privileges should set accordingly.
  2. 2 March, 15:50
    0
    Restrict access privileges on a "need to know" basis.

    Explanation:

    Every user on the company should have assigned one or more roles based on their work location, activities and/or department.

    Then data on the database must have the access permissions restricted to the corresponding roles.

    For example a "sales" role might have read and write access to the clients data, but only read access to products data.
Know the Answer?
Not Sure About the Answer?
Find an answer to your question ✅ “You work for a company that is growing. Originally, all the users in all departments had access to all the data in the database. It is ...” in 📘 Computers and Technology if you're in doubt about the correctness of the answers or there's no answer, then try to use the smart search and find answers to the similar questions.
Search for Other Answers