Security management practices that limit access to technologies is a function included in which COSO component of internal control structure?
A)Control environment.
B)Risk assessment.
C)Control activities.
D)Monitoring.

Question

Quizplus · Accepted Answer

The control activities component of the COSO internal control framework includes practices and policies that help ensure that management directives are carried out. These control activities may include limiting access to technologies, such as implementing passwords, firewalls, or encryption, to reduce the risk of unauthorized access to information systems.

Security Management Practices That Limit Access to Technologies Is a Function