Over the course of Joe's nine years at ABC Corp, he has had the opportunity to fill various roles within the organization. Due to the varied nature of his work, he usually has to have provisions to his account that alter his permissions. Joe notices that while he is filling an IT Auditor role, he has maintained network administrator permissions as well as vulnerability management permissions. This is often referred to as privilege creep and is a violation of which security principle?
a. Need to Know
b. Least Privilege
c. Separation of Duties
d. Rotation of Duties