CompTIA CASP+ (CAS-003) — Question 90

The Chief Information Security Officer (CISO) suspects that a database administrator has been tampering with financial data to the administrator's advantage.
Which of the following would allow a third-party consultant to conduct an on-site review of the administrator's activity?

Answer options

• A. Separation of duties
• B. Job rotation
• C. Continuous monitoring
• D. Mandatory vacation

Correct answer: D

Explanation

Mandatory vacation is effective because it forces the database administrator to be away from their duties, allowing an independent review of their activities during their absence. The other options, while they enhance security, do not directly facilitate a review of the administrator’s actions in the same manner; for instance, separation of duties and job rotation help prevent fraud but do not provide an opportunity for review, and continuous monitoring is ongoing rather than a specific assessment.