Scenario: During a routine audit, it is discovered that employees have been accessing sensitive customer data without proper authorization. What measures should be implemented to prevent unauthorized access and ensure compliance with data security policies?
- Deny the audit findings, hide access logs, manipulate data to conceal unauthorized access, and disregard compliance requirements
- Downplay the severity of unauthorized access, overlook policy violations, prioritize business continuity over security, and avoid disciplinary actions
- Ignore the findings, blame individual employees, restrict access to auditors, and continue operations without changes
- Review and update access controls, enforce least privilege principles, implement multi-factor authentication, conduct regular audits and monitoring, and provide ongoing training on data security policies and procedures
To prevent unauthorized access and ensure compliance with data security policies, organizations should review and update access controls to restrict permissions based on job roles and responsibilities, enforce least privilege principles to limit access to only necessary resources, implement multi-factor authentication for additional security layers, conduct regular audits and monitoring to detect and deter unauthorized activities, and provide ongoing training to employees on data security policies and procedures. By implementing these measures, organizations can strengthen their security posture, mitigate risks, and maintain compliance with regulatory requirements.
Loading...
Related Quiz
- In denormalization, what is the primary aim?
- In data quality assessment, ________ refers to the process of verifying that all required data elements are present and populated.
- What are some best practices for managing metadata in a Data Lake?
- What is the main challenge when transitioning from a logical data model to a physical data model?
- Which of the following best describes a characteristic of NoSQL databases?