Certified in Risk and Information Systems Control (CRISC) — Question 788

Which of the following management actions will MOST likely change the likelihood rating of a risk scenario related to remote network access?

Answer options

• A. Implementing multi-factor authentication
• B. Updating the organizational policy for remote access
• C. Creating metrics to track remote connections
• D. Updating remote desktop software

Correct answer: A

Explanation

Implementing multi-factor authentication directly enhances security and reduces the chances of unauthorized access, thus lowering the risk likelihood. In contrast, updating the policy, creating metrics, or updating software may improve overall security but do not have as direct an impact on the likelihood of a risk scenario as the implementation of multi-factor authentication does.