KT-IAS Account misuse

HR terminates an employee, but their SaaS account stays active two weeks because provisioning is manual. Which control gap does this illustrate?

Multiple choice — select one answer

Answer choices

  1. a. Overly strict DLP on USB drives, without security or identity team coordination per policy.
  2. b. Insufficient MFA on printers, without security or identity team coordination per policy.
  3. c. Joiner-mover-leaver process failure and lack of automated deprovisioning tied to HRIS
  4. d. Missing patch Tuesday calendar, without security or identity team coordination per policy.

Architectural breakdown & explanation

Stale accounts are a top misuse vector; HR-driven deprovisioning closes the window.

Correct answer(s): c. Joiner-mover-leaver process failure and lack of automated deprovisioning tied to HRIS

Exam domain: Account misuse (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Identity & Access Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.