Certified Secure Software Lifecycle Professional (CSSLP) — Question 73

Which of the following types of activities can be audited for security? Each correct answer represents a complete solution. Choose three.

Answer options

• A. File and object access
• B. Data downloading from the Internet
• C. Printer access
• D. Network logons and logoffs

Correct answer: B

Explanation

The correct answer is B because downloading data from the Internet can pose security risks and is often monitored. The other options, while relevant to security, may not be universally audited depending on the organization's policies and may not represent complete solutions as expected in this context.