🔥 3-day streak
ISACA CISM — Certified Information Security Manager71 / 121
Question 71 of 121
A financial services company runs a legacy transaction system that cannot support multifactor authentication due to vendor limitations. The application processes high-value payments and must remain in service for 18 months until replacement. The information security manager needs to reduce the risk of unauthorized access during this period without modifying the application. Which control approach is MOST appropriate?
Reviewed for accuracy · Report an issueNext question