What type of risk can be reduced by implementing strong access control measures?

Implementing strong access control measures is primarily aimed at protecting sensitive information from unauthorized access. By defining who has permission to access specific data and systems, organizations can minimize the risk of data breaches and ensure that only those with the appropriate authorization can view or manipulate critical information. This directly addresses the risk of unauthorized information access, which can lead to data theft, loss of confidentiality, and violations of regulatory compliance.

The other types of risks mentioned—data redundancy, server malfunction, and equipment failure—are related to different aspects of information technology management. Data redundancy pertains to unnecessary duplication of data, which access controls would not address. Server malfunction and equipment failure are issues related to hardware and system reliability; again, they are not mitigated by access control measures. Thus, the focus on protecting against unauthorized access clearly underscores why this option is the most relevant in the context of access control.