Human Resources suspects an employee is accessing the employee salary database. The
administrator is asked to find out who it is. In order to complete this task, which of the
following is a security control that should be in place?
A.
Shared accounts should be prohibited.
B.
Account lockout should be enabled
C.
Privileges should be assigned to groups rather than individuals
D.
Time of day restrictions should be in use