Interested to Buy Any Domain ? << Click Here >> for more details...
A System programmer have access to computer room, it is
possible that he may undertake some unauthorised activities
at any time, due to his deep knowledge how can a control
build to avoid the risk?
- 3 Answers
- 7123 Views
- Wipro, I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / kavish
Probably use a Keylogger , on every system !
whenever the programmer presses the keys of keyboard the
operations are stored in keylogger..
hence the surveillance system can be used ..
| Is This Answer Correct ? | 8 Yes | 0 No |
Answer / beginner
Limitation Of Access for the user, log generator should be
implemented in order to view the activities of the user.
Configuring proper firewalls nd blocking the unused ports.
Configuring the router by giving limited access to the user
are some of the ways
| Is This Answer Correct ? | 0 Yes | 0 No |
Answer / nimesh maru
This is answered with the CISSP perspective.
implement 1] Seperation of Duties : This will make sure that
one individual cannot complete a critical task by himself.
so we would have 2 ,3 or 4 people doing the 1 task.
Now if they want to do something malicious or unathorized
they all would have to come together to perform the task,
which detters the person from doing it. This act of all
people coming together to complete the task is also called
Collusion.
Further Seperation of duties shall be broken down in to
Split Know ledge and Dual Control.
Split Knowledge : No one person has complete knowledge of
performing one task or required information.
Dual control : here 2 or more individuals must be present
and active in participation to complete the task.
2]Job rotation : No One person should stay in one position
for long period of time as they would then have good
knowledge and would know inside out of entire process and
would be able to bypass or circumvent controls put in place
for the santity of the process and compliance.
| Is This Answer Correct ? | 1 Yes | 2 No |
What is an arp?
What is data loss prevention (dlp)?
Explain what are all the technical steps involved when the data transmission from server via router?
What is secured sucket layer and what is the requirement of its in networking
What is Cross Site Request Forgery and how to defend against it?
What is udp flood?
how secure is SAP applications?
What is mesh network
SAP GRC / Security & Authorizations TRAINING / Virsa and CC tools(GRC 5.3)
What is cloud security?
Explain difference between broadcast domain and collision domain?
How do I recover My Hotmail Account without a phone number and email?
Networking Protocols 
