An IS auditor should expect the responsibility for authorizing access rights to production data and systems to be
entrusted to the:
A.
process owners.
B.
system administrators.
C.
security administrator.
D.
data owners.
Explanation:
Data owners are primarily responsible for safeguarding the data and authorizing access to production data on a
need-to-know basis.