Which activity is central to IAM Risk Management?

• A. Regular checks on user access levels.
• B. Analyze logs for suspicious activities.
• C. Use multi-factor methods to secure access.
• D. Prepare for quick action during security breaches.

Answer: (A)

Regularly reviewing and certifying who has access to which resources is the heart of IAM risk management. By repeatedly checking user access levels, you ensure permissions match each person’s current role and that outdated or excessive privileges are removed. This ongoing attestation prevents privilege creep, reduces the risk of insider misuse or accidental access, and supports compliance by providing evidence that access is appropriate and up to date.

Other activities like analyzing logs, enabling multi-factor authentication, or preparing for incidents are important security practices, but they don’t establish the governance process that continually controls and validates who can access what.