KT-IAS Account misuse

Audit finds contractors using former employees' accounts. What policy enforcement MOST directly stops this?

Multiple choice — select one answer

Answer choices

  1. a. Periodic access reviews and automated disablement when employment status changes
  2. b. Longer minimum password length only, without security or identity team coordination per policy.
  3. c. Increasing CCTV retention, without security or identity team coordination per policy.
  4. d. Blocking USB ports on laptops, without security or identity team coordination per policy.

Architectural breakdown & explanation

Access reviews and lifecycle automation address account sharing and ex-employee reuse.

Correct answer(s): a. Periodic access reviews and automated disablement when employment status changes

Exam domain: Account misuse (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Identity & Access Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.