Certified Information Systems Security Professional (CISSP) — Question 53

The security team plans on using automated account reconciliation in the corporate user access review process. Which of the following must be implemented for the BEST results with fewest errors when running the audit?

Answer options

• A. Frequent audits
• B. Segregation of Duties (SoD)
• C. Removal of service accounts from review
• D. Clear provisioning policies

Correct answer: D

Explanation

Implementing clear provisioning policies ensures that user access is granted and managed systematically, reducing the likelihood of errors during the audit process. Frequent audits alone may not address underlying issues, while segregation of duties and removal of service accounts do not directly enhance the reconciliation process.