A security administrator needs a method to secure data in an environment that includes some form of checks so that the administrator can track any changes. Which of the following should the administrator set up to achieve this goal?

Sender Policy Framework (SPF) is an email authentication method used to prevent spoofing by verifying that incoming mail from a domain comes from a host authorized by that domain's administrators. While useful for securing email communications, SPF does not monitor or track changes to files or data within an environment.

Group Policy Objects (GPOs) are used in Windows environments to manage settings and configurations for users and computers in Active Directory. While GPOs can enforce security policies, they do not provide a mechanism for tracking changes to files or data, which is essential for the administrator's goal of monitoring data integrity.

Network Access Control (NAC) solutions enforce security policies on devices attempting to access the network. NAC primarily focuses on ensuring that only compliant devices can connect and does not provide the capability to monitor or track changes to data or files within an environment.