Certified in Risk and Information Systems Control (CRISC) — Question 853

The risk related to the abuse of administrator privileges can BEST be reduced by:

Answer options

• A. assigning the privileges to management only
• B. implementing two-factor authentication
• C. logging the activities performed with the privilege
• D. signing the organization's acceptable use policy

Correct answer: C

Explanation

Option C is correct because logging activities allows for tracking and reviewing actions taken with administrator privileges, which can deter misuse and enable audits. The other options focus on access control or policy adherence but do not provide a mechanism for monitoring and accountability.