CompTIA Security+ (SY0-701) — Question 264

A security analyst at an organization observed several user logins from outside the organization's network. The analyst determined that these logins were not performed by individuals within the organization. Which of the following recommendations would reduce the likelihood of future attacks? (Choose two.)

Answer options

• A. Disciplinary actions for users
• B. Conditional access policies
• C. More regular account audits
• D. Implementation of additional authentication factors
• E. Enforcement of content filtering policies
• F. A review of user account permissions

Correct answer: B, D

Explanation

Conditional access policies (B) help control access based on specific conditions, significantly minimizing unauthorized access risks. Implementation of additional authentication factors (D) enhances security by requiring more than just a password, making it harder for attackers to gain access. The other options, while beneficial for security, do not directly address the immediate threat of unauthorized logins.