Question

A security administrator returning from a short vacation receives an account lock-out message when attempting to log into the computer. After getting the account unlocked the security administrator immediately notices a large amount of emails alerts pertaining to several different user accounts being locked out during the past three days. The security administrator uses system logs to determine that the lock-outs were due to a brute force attack on all accounts that has been previously logged into that machine. Which of the following can be implemented to reduce the likelihood of this attack going undetected? •

A. Password complexity rules.
B. Continuous monitoring.
C. User access reviews.
D. Account lockout policies.

Answer 1

Answer: B)Continuous monitoring

Explanation: Continuous monitoring is the mechanism that is carried out to monitor and detect any kind of risk-related or malicious activity in an organization environment. This helps to identify the unexpected changes , errors, accessing in the operation and functions of the organization.

Other options are incorrect because password complexity rules are regulation for password setting, user access reviews is used for the re-evaluation of the user access made in the system and account lockout policies are used for locking accounting of the user if the number of allowed attempts are failed.Thus, the correct option is option(B).