CRISC Certified in Risk and Information Systems Control – Question509

An audit reveals that several terminated employee accounts maintain access. Which of the following should be the FIRST step to address the risk?

A.
Perform a risk assessment
B. Disable user access
C. Perform root cause analysis
D. Develop an access control policy

Correct Answer: D