A post-implementation audit has been completed for the deployment of a sophisticated job scheduling tool. Which of the following observations would be of GREATEST concern?
A.
The IT team customized tool settings without seeking approval from the provider.
B.
The overall project took longer to complete than planned.
C.
The data encryption setting is not enabled in the scheduling tool.
D.
The IT team accesses the scheduler admin panel via a generic account.
D. The IT team accesses the scheduler admin panel via a generic account.
Using a generic account for accessing the scheduler admin panel poses significant security risks. It makes it difficult to track individual user actions, which can lead to accountability issues and complicate incident response. Additionally, it increases the risk of unauthorized access, as generic accounts are often less secure and more prone to misuse.
I'm leaning toward C on this due to this being an audit certificate. One would think they would care most about security and encryption out of the options provided. Not to say that option A and D aren't concerns as well. Just C seems to be more concerning.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
pLulu
3 months, 3 weeks agoblehbleh
5 months ago