ssentials$-$in$-$cybersecurity$-$by$-$microsoft$-$and$-$linkedin$/$summative$-$exams$/$urn:lila$\_$assessmentV$2$:$62211667$

Return to content

Question $24$ of $40$

An employee in the human resources department has been accessing confidential employee records and sharing them with unauthorized individuals outside the organization. They are motivated by personal gain and have been receiving financial compensation in exchange for the data. What is an effective control to detect and prevent this type of insider threat?

implementing access controls and segregation of duties to limit unauthorized access

conducting regular security awareness training on the risks of insider threats

conducting regular security audits and monitoring of employee activities

educating employees about the importance of data privacy and confidentiality