CompTIA Security+ (SY0-601) — Question 534

Following a recent security breach, an analyst discovered that user permissions were added when joining another part of the organization but were not removed from existing groups. Which of the following policies would help to correct these issues in the future?

Answer options

• A. Service accounts
• B. Account audits
• C. Password complexity
• D. Lockout policy

Correct answer: B

Explanation

Account audits are essential for regularly reviewing user permissions and ensuring that they are appropriate and current. The other options, such as service accounts, password complexity, and lockout policies, do not address the need for ongoing monitoring and management of user access rights.