CompTIA Project+ (PK0-005) — Question 127

An organization was fined due to an audit finding that revealed a third-party vendor was able to see secured project information in a recently implemented system. Which of the following was the cause of this situation?

Answer options

• A. The ticket system provided access by default without any approval.
• B. The project manager did not perform proper project planning.
• C. The system is lacking proper access controls.
• D. Sensitive data was incorrectly classified during the audit process.

Correct answer: C

Explanation

The correct answer is C because the absence of proper access controls would allow unauthorized parties to view secured information. Options A and B do not directly address the access control issue, while option D pertains to the classification of data rather than the control of access to it.