Question

Several accounting department users are reporting unusual Internet traffic in the browsing history of their workstations after returning to work and logging in. The building security team informs the IT security team that the cleaning staff was caught using the systems after the accounting department users left for the day.

Which of the following steps should the IT security team take to help prevent this from happening again?

(Choose two.)

1. Install a web monitor application to track Internet usage after hours.
2. Configure a policy for workstation account timeout at three minutes.
3. Configure NAC to set time-based restrictions on the accounting group to normal business hours.
4. Configure mandatory access controls to allow only accounting department users to access the workstations.
5. Set up a camera to monitor the workstations for unauthorized use.

Answer 1

Hey here is answer to your question.

Correct answers are C and D.

Explanation :-

C => Configure mandatory access controls to allow only accounting department users to access the workstations.

So only department user can login to the workstations for working purposes and anyone else wont be having access to use them like putting a user secific password to the system so only that user can login and others cant access workstation.

D=> Set up a camera to monitor the workstations for unauthorized use.

Just in case any passwords are leaks then setting up the camera at workstatiosn will help to identify the person who is abusing the workstation. Thus providing crucial info about breach .

In case of any doubt please comment. Happy Learning :)