Your organization recently hired an outside security auditor to review internal processes. The auditor identified several employees who had permissions for previously held jobs within the company. What should the organization implement to prevent this in the future?
A. Design reviews
B. Code reviews
C. Baseline review
D. User rights and permissions reviews
Answer: D. User rights and permissions reviews