To ensure compliance with a security policy requiring that passwords be a combination of letters and numbers,

adminJanuary 30, 2019

To ensure compliance with a security policy requiring that passwords be a combination of letters and numbers, an IS auditor should recommend that:

A. the company policy be changed.

B. passwords are periodically changed.

C. an automated password management tool be used.

D. security awareness training is delivered.

Explanation:

The use of an automated password management tool is a preventive control measure. The software would prevent repetition (semantic) and would enforce syntactic rules, thus making the passwords robust. It would also provide a method for ensuring frequent changes and would prevent the same user from reusing their old password for a designated period of time. Choices A, B and D do not enforce compliance.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ISACA Exam Questions

Free ISACA Study Guide

To ensure compliance with a security policy requiring that passwords be a combination of letters and numbers,

Leave a Reply Cancel reply