Certified in Risk and Information Systems Control (CRISC) — Question 763

Which of the following is the BEST way to manage the risk associated with malicious activities performed by database administrators (DBAs)?

Answer options

• A. Activity logging and monitoring
• B. Awareness training and background checks
• C. Two-factor authentication
• D. Periodic access review

Correct answer: A

Explanation

Activity logging and monitoring is the most effective approach as it allows organizations to track and review the actions of DBAs in real-time, thereby identifying any malicious activities promptly. While awareness training, background checks, two-factor authentication, and periodic access reviews contribute to security, they do not provide the same level of ongoing oversight and immediate response capability as logging and monitoring.