🔥 3-day streak
ISC2 CISSP — Certified Information Systems Security Professional91 / 129
Question 91 of 129
A large hospital uses RBAC to control access to its electronic health record system. Over five years, administrators have created more than 4,000 distinct roles to accommodate combinations of department, shift, location, and patient-assignment rules. Auditors now report that no one can determine which role grants which effective permissions, and provisioning new staff requires manual role selection that frequently over-grants access. Which approach BEST addresses the underlying 'role explosion' problem while preserving fine-grained control?
Reviewed for accuracy · Report an issueNext question