User accounts are the first target of a hacker who has gained access to an organization's network. Which of the following is a true statement when maintaining user access accounts?
A. It is important to have procedures in place to address promotions and lateral moves.
B. No privileges should be granted until authorization is completed by Human Resources and the IT Security Officer.
C. There must be a mechanism to disable accounts should relations end between the organization and any of its employees.
D. All of the answer choices are correct.