Certified Information Systems Auditor (CISA) — Question 415

Which of the following would BEST detect unauthorized modification of data by a database administrator (DBA)?

Answer options

• A. Audit database change requests
• B. Audit database activity logs
• C. Review changes to edit checks
• D. Compare data to input records

Correct answer: B

Explanation

The correct answer is B because auditing database activity logs provides a comprehensive view of all actions taken within the database, making it easier to spot unauthorized changes. Options A, C, and D may not capture all unauthorized modifications since they focus on specific aspects rather than overall activity.