What is the auditor’s BEST course of action?

Posted by: Pdfprep Category: CISA Tags: , , Post Date: December 7, 2020

An IS auditor notes that application of super-user activity was not recorded in system logs.

What is the auditor’s BEST course of action?
A . Recommend a least-privilege access model.
B . Investigate the reason for the lack of logging.
C . Report the issue to the audit manager.
D . Recommend activation of super-user activity logging.

Answer: B

Author

Leave a Reply

Your email address will not be published.