Exam CRISC topic 1 question 559 discussion

it says revoked upon departure, so there is nothing like automation, i would say the answer is C

Human resource is not responsible for revoking the IT system access. It is IT dept. who does it. D is correct answer

The human resources (HR) system automatically revokes system access - This method is the most effective and reliable way to ensure that access is revoked immediately upon termination

B. A process to remove employee access during the exit interview is implemented. The best method to ensure a terminated employee's access to IT systems is revoked upon departure from the organization is to "B. Implement a process to remove employee access during the exit interview." This approach involves integrating the termination process with the IT access management process, ensuring that access is revoked as part of the formal exit procedures. By addressing access removal during the exit interview, you can promptly and reliably revoke access when an employee leaves the organization. While the other options (reconciling login attempts, HR system automatically revoking access, generating a list for reconciliation) can contribute to access management, they might not be as direct and effective as implementing a process during the exit interview to ensure that access removal is an integral part of the employee departure process.

Why "C" ? are we assuming that all systems are integrated with HR system ? or HR system is an authentication system for other systems (SSO). If the question indicates that HR credentials are used as a single sign on then "C" is true. "D" is a good option but needs efforts and not proactive. Having a solid termination process in place will ensure that all access has been revoked.

Agree it is C. Tying revocation of access to the HRMS via an automated process is best in this case.

should be C

The best method is always an automated process that revokes access when the employee is terminated, the reconciliation process does not itself revoke access.