Certified Incident Handler (CIH) Practice Ecam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Certified Incident Handler (CIH) Exam. Enhance your knowledge with interactive quizzes and detailed insights into cyber incident handling. Boost your exam readiness with our expert-designed questions!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

Which of the following controls helps protect against unauthorized access through credential management?

  1. Data recovery

  2. Account management

  3. Audit log management

  4. Incident response

The correct answer is: Account management

Account management is essential in protecting against unauthorized access through credential management because it encompasses the processes involved in creating, modifying, and disabling user accounts and their associated permissions. By effectively managing user accounts, organizations can ensure that only authorized individuals have access to sensitive systems and data. This includes practices such as regularly reviewing user accounts, implementing role-based access controls, and enforcing the principle of least privilege. Proper account management helps prevent unauthorized access by ensuring that credentials are not shared, misused, or left inactive. It also involves practices such as password management, which can encourage strong passwords and regular password changes, reducing the risk of credential compromise. This holistic approach is crucial for maintaining security and mitigating risks associated with unauthorized access. On the other hand, data recovery focuses on restoring data after a loss, audit log management involves tracking and analyzing user activities, and incident response pertains to a structured approach to handle security breaches. While these areas are essential for overall security, they do not directly address the management of user credentials and account privileges in the way that account management does.

More Questions Like This