During a recent audit, it was discovered that several user accounts belonging to former employees were still active and had valid VPN permissions.
Which of the following would help reduce the amount of risk the organization incurs in this situation in the future?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
The best solution to reduce risk in this situation would be to implement user access reviews (Option B).
User access reviews are regular evaluations of user accounts to determine whether they still require access to certain systems, applications, and data. These reviews can help identify inactive and/or dormant accounts that should be disabled or deleted. This would reduce the risk of former employees having access to sensitive company data and systems.
Time-of-day restrictions (Option A) could be useful for limiting access to certain resources during non-business hours. However, it wouldn't necessarily address the issue of former employees having active accounts.
Group-based privileges (Option C) can simplify access management by allowing access control to be applied to entire groups of users at once. However, it wouldn't necessarily address the issue of inactive accounts belonging to former employees.
Change management policies (Option D) are used to manage changes to IT systems, including user account creation and removal. While important for ensuring proper IT management practices, this option wouldn't necessarily address the issue of inactive accounts belonging to former employees.
In conclusion, user access reviews are the best solution to reduce the risk of former employees having access to company data and systems by identifying inactive and/or dormant accounts that should be disabled or deleted.