CompTIA Security+ (SY0-401) — Question 34

Which of the following could a security administrator implement to mitigate the risk of tailgating for a large organization?

Answer options

• A. Train employees on correct data disposal techniques and enforce policies.
• B. Only allow employees to enter or leave through one door at specified times of the day.
• C. Only allow employees to go on break one at a time and post security guards 24/7 at each entrance.
• D. Train employees on risks associated with social engineering attacks and enforce policies.

Correct answer: D

Explanation

The correct answer is D because training employees about social engineering makes them aware of the tactics used by tailgaters to gain unauthorized access. Options A, B, and C focus on data disposal and access control without addressing the specific social engineering risks associated with tailgating.