Home / Isaca / CISA / List of questions

Isaca CISA Practice Test - Questions Answers, Page 38

Add to Whishlist

List of questions

Question 371

Report

An IS auditor is reviewing documentation of application systems change control and identifies several patches that were not tested before being put into production. Which of the following is the MOST significant risk from this situation?

Become a Premium Member for full access

Unlock Premium Member

Question 372

Report

What is the PRIMARY purpose of documenting audit objectives when preparing for an engagement?

Become a Premium Member for full access

Unlock Premium Member

Question 373

Report

Which of the following should be the FIRST step in the incident response process for a suspected breach?

Become a Premium Member for full access

Unlock Premium Member

Question 374

Report

An IS auditor plans to review all access attempts to a video-monitored and proximity card-controlled communications room. Which of the following would be MOST useful to the auditor?

Become a Premium Member for full access

Unlock Premium Member

Question 375

Report

Which of the following should be the FRST step when developing a data toes prevention (DIP) solution for a large organization?

Become a Premium Member for full access

Unlock Premium Member

Question 376

Report

An IS auditor reviewing security incident processes realizes incidents are resolved and closed, but root causes are not investigated. Which of the following should be the MAJOR concern with this situation?

Become a Premium Member for full access

Unlock Premium Member

Question 377

Report

Which of the following audit procedures would be MOST conclusive in evaluating the effectiveness of an e-commerce application system's edit routine?

Become a Premium Member for full access

Unlock Premium Member

Question 378

Report

A review of an organization's IT portfolio revealed several applications that are not in use. The BEST way to prevent this situation from recurring would be to implement.

Become a Premium Member for full access

Unlock Premium Member

Question 379

Report

An IS auditor follows up on a recent security incident and finds the incident response was not adequate. Which of the following findings should be considered MOST critical?

Become a Premium Member for full access

Unlock Premium Member

Question 380

Report

in a controlled application development environment, the MOST important segregation of duties should be between the person who implements changes into the production environment and the:

Become a Premium Member for full access

Unlock Premium Member

Total 1.402 questions

First

Prev

Next

Last

Go to page: of 141

Question 371 (0)

An IS auditor is reviewing documentation of application systems change control and identifies several patches that were not tested before being put into production. Which of the following is the MOS

Question 372 (0)

What is the PRIMARY purpose of documenting audit objectives when preparing for an engagement?

Question 373 (0)

Which of the following should be the FIRST step in the incident response process for a suspected breach?

Question 374 (0)

An IS auditor plans to review all access attempts to a video-monitored and proximity card-controlled communications room. Which of the following would be MOST useful to the auditor?

Question 375 (0)

Which of the following should be the FRST step when developing a data toes prevention (DIP) solution for a large organization?

Question 376 (0)

An IS auditor reviewing security incident processes realizes incidents are resolved and closed, but root causes are not investigated. Which of the following should be the MAJOR concern with this sit

Question 377 (0)

Which of the following audit procedures would be MOST conclusive in evaluating the effectiveness of an e-commerce application system's edit routine?

Question 378 (0)

A review of an organization's IT portfolio revealed several applications that are not in use. The BEST way to prevent this situation from recurring would be to implement.

Question 379 (0)

An IS auditor follows up on a recent security incident and finds the incident response was not adequate. Which of the following findings should be considered MOST critical?

Question 380 (0)

in a controlled application development environment, the MOST important segregation of duties should be between the person who implements changes into the production environment and the:

Open VPLUS File

Convert VPLUS to PDF

Related questions

An IS auditor is reviewing the backup procedures in an organization that has high volumes of data with frequent changes to transactions. Which of the following is the BEST backup scheme to recommend given the need for a shorter restoration time in the event of a disruption?

Which of the following is the BEST indicator of the effectiveness of an organization's incident response program?

An IS auditor is reviewing a client's outsourced payroll system to assess whether the financial audit team can rely on the application. Which of the following findings would be the auditor's GREATEST concern?

Which of the following is the MOST important responsibility of user departments associated with program changes?

Management has learned the implementation of a new IT system will not be completed on time and has requested an audit. Which of the following audit findings should be of GREATEST concern?

An IS audit manager was temporarily tasked with supervising a project manager assigned to the organization's payroll application upgrade. Upon returning to the audit department, the audit manager has been asked to perform an audit to validate the implementation of the payroll application. The audit manager is the only one in the audit department with IT project management experience. What is the BEST course of action?

A business has requested an audit to determine whether information stored in an application is adequately protected. Which of the following is the MOST important action before the audit work begins?

During a follow-up audit, it was found that a complex security vulnerability of low risk was not resolved within the agreed-upon timeframe. IT has stated that the system with the identified vulnerability is being replaced and is expected to be fully functional in two months Which of the following is the BEST course of action?

Which of the following findings from a database security audit presents the GREATEST risk of critical security exposures?

An IS auditor evaluating the change management process must select a sample from the change log. What is the BEST way to the auditor to confirm the change log is complete?

Unlock Premium Member Feature for CISA

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

How to open VPLUS file?

Convert VPLUS to PDF (DOCX)