Episode 10 — The Access No One Should Have Combined
A user has both creation and approval access — a classic segregation-of-duties conflict.
This episode teaches you how audit leaders evaluate SoD failures, privilege misuse, system control gaps, and governance exposure.
You’ll learn:
• segregation of duties
• privilege creep
• access governance
• monitoring effectiveness
• system control failures
• escalation judgment
• integrity risk calibration
Perfect for CISA aspirants and IT auditors.
CyberLex Leadership Audio Series —
CISA Audit Judgment Series.