An information security manager has been notified that two senior executives have the ability to elevate their own privileges in the corporate accounting system, in violation of policy. What is the FIRST step to address this issue?
A.
Immediately suspend the executives' access privileges.
B.
Notify the CISO of the security policy violation.
C.
Perform a full review of all system transactions over the past 90 days.
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit