CompTIA PenTest+ (PT1-002) — Question 27

A penetration tester discovers during a recent test that an employee in the accounting department has been making changes to a payment system and redirecting money into a personal bank account. The penetration test was immediately stopped. Which of the following would be the BEST recommendation to prevent this type of activity in the future?

Answer options

• A. Enforce mandatory employee vacations
• B. Implement multifactor authentication
• C. Install video surveillance equipment in the office
• D. Encrypt passwords for bank account information

Correct answer: A

Explanation

The best recommendation is to enforce mandatory employee vacations, as this can help uncover fraudulent activities by ensuring that no single employee has continuous control over financial operations. While multifactor authentication and encryption are important for security, they do not directly address the issue of internal fraud perpetrated by an employee with access to the system. Video surveillance may deter some behavior but is not a comprehensive solution for preventing financial misconduct.