Certified Information Systems Auditor (CISA) — Question 303

An IS auditor finds that one employee has unauthorized access to confidential data. The IS auditor's BEST recommendation should be to:

Answer options

• A. recommend corrective actions to be taken by the security administrator.
• B. reclassify the data to a lower level of confidentiality.
• C. implement a strong password schema for users.
• D. require the business owner to conduct regular access reviews.

Correct answer: A

Explanation

The best course of action is to recommend corrective actions to the security administrator, as they are responsible for managing access controls and addressing security incidents. Reclassifying the data or implementing a password schema does not directly resolve the unauthorized access issue. Conducting regular access reviews is beneficial, but it does not immediately address the existing unauthorized access situation.