CompTIA Security+ (SY0-501) — Question 946
A security administrator has been tasked with improving the overall security posture related to desktop machines on the network. An auditor has recently that several machines with confidential customer information displayed in the screens are left unattended during the course of the day.
Which of the following could the security administrator implement to reduce the risk associated with the finding?
Answer options
- A. Implement a clean desk policy
- B. Security training to prevent shoulder surfing
- C. Enable group policy based screensaver timeouts
- D. Install privacy screens on monitors
Correct answer: C
Explanation
Enabling group policy based screensaver timeouts automatically locks unattended machines, reducing the risk of unauthorized access to confidential information. While a clean desk policy and privacy screens can help, they do not directly ensure that screens are locked when not in use. Security training is beneficial, but it does not prevent unauthorized viewing of screens when machines are left unattended.