CompTIA Security+ (SY0-601) — Question 828

The president of a regional bank likes to frequently provide SOC tours to potential investors. Which of the following policies BEST reduces the risk of malicious activity occurring after a tour?

Answer options

• A. Password complexity
• B. Acceptable use
• C. Access control
• D. Clean desk

Correct answer: D

Explanation

The 'Clean desk' policy is effective because it ensures that sensitive information is not left out in the open, reducing the risk of unauthorized access after a tour. Other options like 'Password complexity' and 'Access control' do not directly address the immediate concerns related to physical security during and after investor visits. 'Acceptable use' also does not specifically mitigate risks associated with visitors having access to sensitive areas.