Certified in Risk and Information Systems Control (CRISC) — Question 1032

Which of the following would be the MOST effective mitigating control when a legacy application does not have the capability to appropriately enforce separation of duties?

Answer options

• A. Establish delegated authorities.
• B. Periodically validate user entitlements.
• C. Monitor transaction logs.
• D. Develop user access policies.

Correct answer: C

Explanation

Monitoring transaction logs allows organizations to track user activities and identify any unauthorized actions that may breach separation of duties. While establishing delegated authorities, validating user entitlements, and developing access policies are important, they do not provide the same level of oversight and immediate detection of potential violations as monitoring logs does.