nerdexam
ExamsCAS-002Questions#27
CompTIA

CAS-002 · Question #27

CAS-002 Question #27: Real Exam Question with Answer & Explanation

The correct answer is C: Review the termination policy with the company managers to ensure prompt reporting of. The root cause of the delay is that managers are not promptly notifying IT or HR when an employee departs, so accounts aren't disabled within the 8-hour policy window. Engaging managers to enforce timely reporting ensures the process is triggered at the right time. Option A (revi

Question

A security audit has uncovered a lack of security controls with respect to employees' network account management. Specifically, the audit reveals that employee's network accounts are not disabled in a timely manner once an employee departs the organization. The company policy states that the network account of an employee should be disabled within eight hours of termination. However, the audit shows that 5% of the accounts were not terminated until three days after a dismissed employee departs. Furthermore, 2% of the accounts are still active. Which of the following is the BEST course of action that the security officer can take to avoid repeat audit findings?

Options

  • AReview the HR termination process and ask the software developers to review the identity
  • BEnforce the company policy by conducting monthly account reviews of inactive accounts.
  • CReview the termination policy with the company managers to ensure prompt reporting of
  • DUpdate the company policy to account for delays and unforeseen situations in account

Explanation

The root cause of the delay is that managers are not promptly notifying IT or HR when an employee departs, so accounts aren't disabled within the 8-hour policy window. Engaging managers to enforce timely reporting ensures the process is triggered at the right time. Option A (review HR process and ask developers to review identity management software) addresses symptoms rather than the root cause-the notification breakdown between management and IT. Option B (monthly account reviews) is reactive and still allows accounts to remain active for weeks. Option D (updating the policy to accommodate delays) weakens security controls and is the opposite of the correct approach-the policy exists to reduce risk, not to be relaxed for operational convenience.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice