CISA Certified Information Systems Auditor – Question2322 - CISA Certified Information Systems Auditor

Who is ultimately responsible and accountable for reviewing user access to systems?

A. Systems security administrators
B. Data custodians
C. Data owners
D. Information systems auditors

Correct Answer: C

Explanation:

Explanation:
Data owners are ultimately responsible and accountable for reviewing user access to systems.