A supervisor in your organization was demoted on Friday afternoon. The supervisor had the ability to modify the
contents of a confidential database, as well as other managerial permissions. On Monday morning, the
database administrator reported that log files indicated that several records were missing from the database
Which of the following risk mitigation strategies should have been implemented when the supervisor was
demoted?
A.
Incident management
B.
Routine auditing
C.
IT governance
D.
Monthly user rights reviews
Why monthly? It could take up to 30 days to review.
routing auditing out of the answer choices will be better than monthly users right review. better yet, the company should have a policy in place for those terminated employees regardless of their positions.