CompTIA Security+ (SY0-701) — Question 164

A bank set up a new server that contains customers' PII. Which of the following should the bank use to make sure the sensitive data is not modified?

Answer options

• A. Full disk encryption
• B. Network access control
• C. File integrity monitoring
• D. User behavior analytics

Correct answer: C

Explanation

File integrity monitoring is the best choice because it specifically tracks changes to files, ensuring that sensitive data remains unaltered. Full disk encryption protects data at rest but does not prevent modifications, while network access control and user behavior analytics serve different purposes that do not directly address the integrity of data.