Ask Question

You work for a company that is growing. Originally, all the users in all departments had access to all the data in the database. It is considered a security risk. What is an appropriate action to reduce the risk?

+4
Answers (2)
  1. 19 September, 03:43
    0
    Authorization levels (privileges) need to be set for the users in the company.

    Explanation:

    Users need to be classified according to their departments and their position. Each group should see only related data, so their authorizations need to be done accordingly.

    Also managers and staff should have different levels of reach to the data. Thus their privileges should set accordingly.
  2. 19 September, 04:00
    0
    Restrict access privileges on a "need to know" basis.

    Explanation:

    Every user on the company should have assigned one or more roles based on their work location, activities and/or department.

    Then data on the database must have the access permissions restricted to the corresponding roles.

    For example a "sales" role might have read and write access to the clients data, but only read access to products data.
Know the Answer?
Not Sure About the Answer?
Find an answer to your question 👍 “You work for a company that is growing. Originally, all the users in all departments had access to all the data in the database. It is ...” in 📗 Computers & Technology if the answers seem to be not correct or there’s no answer. Try a smart search to find answers to similar questions.
Search for Other Answers