A service organization is preparing for a SOC 2® engagement. They have identified a risk that unauthorized changes to the production database could result in data integrity issues. Which of the following is a 'preventive' control addressing this risk?

Answer options:

Reviewing database logs weekly for unauthorized queries

Restricting database write access to a specific service account managed by the application

Setting up alerts for failed login attempts

Performing a quarterly user access review

How to approach this question

Distinguish between Preventive (stops it happening) and Detective (finds out it happened). Access restriction stops it.

B.Restricting database write access to a specific service account managed by the application✓ Correct

Restricting access is a preventive control because it stops the unauthorized action before it can occur. Reviews and logs are detective.

Classifying reviews or logs as preventive.

82 questions · hints · full answers · grading