Certified Information Security Manager (CISM) — Question 842

For which of the following is it MOST important that system administrators be restricted to read-only access?

Answer options

• A. User access log files
• B. Administrator user profiles
• C. System logging options
• D. Administrator log files

Correct answer: D

Explanation

Administrator log files should be restricted to read-only access to prevent any unauthorized changes that could compromise system integrity. Other options, like user access log files and administrator user profiles, may not pose the same level of risk if altered, making them less critical to restrict.