Certified Information Systems Auditor (CISA) — Question 146

Which of the following is the BEST preventative control to ensure that database integrity is maintained?

Answer options

• A. Mandatory annual user access reviews
• B. Biometric authentication
• C. Role-based access
• D. Mandatory password changes

Correct answer: C

Explanation

Role-based access (C) is the most effective preventative control as it ensures that users only have access to the data necessary for their roles, thereby minimizing the risk of unauthorized modifications. Mandatory annual user access reviews (A), biometric authentication (B), and mandatory password changes (D) are important security practices, but they do not directly control data access and integrity as effectively as role-based access does.