Which policy BEST detect fraudulent activities?

yzT

I guess I haven't read this question on any test.

Which policy is better for detect fraudulent activities, mandatory vacations or job rotation?

I know the answer is going to be mandatory vacations, but why? With job rotation the malicious insider can't keep his malicious activities forever either. At least not the same malicious activity.

Darril

This is probably related to the wording of the question. Job rotation *discourages* fraud because people know they will be moving out of the job at some point. Mandatory vacations *detect* fraud while the person is away.

Sharkbait

I think the philosophy is that the person committing the fraud will eventually be forced to take vacation. While he/she is on vacation, the company will perform its security checks to determine if any naughtiness is taking place.

-Sharkbait-