Certified in Risk and Information Systems Control (CRISC) — Question 1234

It was discovered that a service provider's administrator was accessing sensitive information without the approval of the customer in an Infrastructure as a Service (IaaS) model. Which of the following would BEST protect against a future recurrence?

Answer options

• A. Intrusion prevention system (IPS)
• B. Contractual requirements
• C. Data encryption
• D. Two-factor authentication

Correct answer: C

Explanation

Data encryption is the most effective way to safeguard sensitive information, as it ensures that even if unauthorized access occurs, the data remains unreadable without the appropriate decryption keys. While the other options can enhance security, they do not directly prevent unauthorized access to the data itself.