Certified in Risk and Information Systems Control (CRISC) — Question 595

Which of the following would BEST help to address the risk associated with malicious outsiders modifying application data?

Answer options

• A. Role-based access controls
• B. Multi-factor authentication
• C. Activation of control audits
• D. Acceptable use policies

Correct answer: B

Explanation

Multi-factor authentication (B) significantly enhances security by requiring multiple forms of verification, making it more difficult for malicious outsiders to gain unauthorized access and modify data. Role-based access controls (A) limit user permissions but do not prevent access if credentials are compromised. Activation of control audits (C) helps in monitoring but does not proactively prevent modifications. Acceptable use policies (D) set guidelines but do not enforce security measures against unauthorized access.