Certified Information Systems Auditor (CISA) — Question 1340
After an employee termination, a network account was removed, but the application account remained active. To keep this issue from recurring, which of the following is the BEST recommendation?
Answer options
- A. Integrate application accounts with network single sign-on.
- B. Perform periodic access reviews.
- C. Retrain system administration staff.
- D. Leverage shared accounts for the application.
Correct answer: A
Explanation
Integrating application accounts with network single sign-on ensures that when a user is terminated, all associated accounts are disabled simultaneously, enhancing security. Performing periodic access reviews (Option B) is helpful, but it is more reactive than proactive. Retraining system administration staff (Option C) may improve practices but does not directly address the integration issue. Leveraging shared accounts for the application (Option D) is not advisable as it can lead to accountability problems and security risks.