Which of the following roles combined with the role of a database administrator (DBA) will create a segregation of duties conflict?
Click on the arrows to vote for the correct answer
A. B. C. D.D.
The role of a database administrator (DBA) includes managing and maintaining the database, ensuring that the data is available, secure, and properly backed up. The DBA is also responsible for granting and revoking access to the database and its objects.
Segregation of duties is a fundamental concept in information security that requires that critical tasks be separated among multiple individuals or groups to prevent fraud, errors, or other malicious activities. Segregation of duties ensures that no single person has complete control over a process and prevents one person from carrying out an action that could be harmful or malicious without being detected.
Out of the roles listed, the one that combined with the role of a database administrator will create a segregation of duties conflict is D. Security administrator.
The role of a security administrator includes defining and enforcing security policies, conducting risk assessments, and managing security controls. In a well-designed system, the security administrator and the DBA should have different sets of responsibilities. The security administrator should be responsible for defining and enforcing security policies, while the DBA should be responsible for managing the database itself.
If the same person is responsible for both roles, there is a risk that they may be able to manipulate the system to bypass security controls, such as granting themselves or others unauthorized access to the database or changing security settings to cover up their activities. This situation could create a conflict of interest and compromise the integrity of the system.
In summary, the combination of the roles of a database administrator and a security administrator will create a segregation of duties conflict.