Scenario: Your organization employs single sign-on (user name and password only) as a convenience to your employees to access organizational systems and data. Permission to individual systems and databases is vetted and approved through supervisors and data owners to ensure that only approved personnel can use particular applications or retrieve information. All employees have access to their own human resource information, including the ability to change their bank routing and account information and other personal details through the Employee Self-Service application. All employees have access to the organizational VPN. The organization wants a more permanent solution to the threat to user credential compromise through phishing. What technical solution would BEST address this issue?
A) Multi-factor authentication employing hard tokens
B) Forcing password changes every 90 days
C) Decreasing the number of employees with administrator privileges
D) Professional user education on phishing conducted by a reputable vendor
Correct Answer:
Verified
Q174: Scenario: A Chief Information Security Officer (CISO)
Q175: Scenario: Your corporate systems have been under
Q176: Involvement of senior management is MOST important
Q177: Which of the following is a symmetric
Q178: Scenario: A CISO has several two-factor authentication
Q180: Which of the following statements about Encapsulating
Q181: Scenario: You are the CISO and are
Q182: Which type of physical security control scan
Q183: Scenario: Your company has many encrypted telecommunications
Q184: Scenario: Your corporate systems have been under
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents