Which of the following actions is categorized as Detective in Compliance Manager?

Disable ads (and more) with a membership for a one time $4.99 payment

Study for the Microsoft SC-900 Exam. Master key concepts with targeted flashcards and multiple-choice questions, featuring hints and explanations. Get prepared and confident for success!

The action of performing a system access audit is categorized as Detective in Compliance Manager because it involves reviewing and analyzing access logs and activities to identify unauthorized or inappropriate access to systems and data. This process helps organizations monitor and assess their security posture while providing visibility into how data and resources are being accessed. A system access audit is crucial for detecting potential security incidents or breaches, enabling organizations to respond promptly to any anomalies detected during the audit.

In the context of Compliance Manager, Detective controls are focused on identifying and alerting organizations to potential security issues after they have occurred, rather than preventing them. This aligns well with the purpose of conducting an audit, which is to evaluate past activities and establish whether proper access controls are being followed.

Other options involve proactive or corrective actions rather than detection. Encrypting data at rest serves as a preventive measure, while implementing access monitoring is more aligned with creating alerts or logs of access activities. Making configuration changes in response to a security incident is a corrective action aimed at addressing issues after they arise, rather than detecting them.