Certified Information Systems Security Professional (CISSP) — Question 255

Which one of the following BEST protects vendor accounts that are used for emergency maintenance?

Answer options

• A. Vendor access should be disabled until needed
• B. Frequent monitoring of vendor access
• C. Role-based access control (RBAC)
• D. Encryption of routing tables

Correct answer: A

Explanation

Disabling vendor access until it is required ensures that unauthorized use is prevented, making it the best option for protection. Frequent monitoring, while important, does not prevent access; it only tracks it. Role-based access control (RBAC) is beneficial but does not specifically address the emergency nature of vendor accounts. Encryption of routing tables is unrelated to vendor account access security.