ExamGecko
Search Search Login
Home Home / IIA / IIA-CIA-Part3

IIA IIA-CIA-Part3 Practice Test - Questions Answers, Page 23

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

When executive compensation is based on the organization's financial results, which of the following situations is most likely to arise?
Which of the following contract concepts is typically given in exchange for the execution of a promise?
An internal auditor is reviewing key phases of a software development project. Which of the following would; the auditor most likely use to measure the project team's performance related to how project tasks are completed?
Which of the following statements is true regarding a project life cycle?
An internal auditor observed that the organization's disaster recovery solution will make use of a cold site in a town several miles away. Which of the following is likely to be a characteristic of this disaster recover/ solution?
An organization is considering outsourcing its IT services, and the internal auditor as assessing the related risks. The auditor grouped the related risks into three categories; - Risks specific to the organization itself. - Risks specific to the service provider. - Risks shared by both the organization and the service provider Which of the following risks should the auditor classify as specific to the service provider?
A newly appointed board member received an email that appeared to be from the company's CEO. The email stated: "Good morning. As you remember, the closure of projects is our top priority. Kindly organize prompt payment of the attached invoice for our new solar energy partners." The board member quickly replied to the email and asked under which project the expense should be accounted. Only then did he realize that the sender 's mail domain was different from the company's. Which of the following cybersecurity risks nearly occurred in the situation described?
An employee was promoted within the organization and relocated to a new office in a different building. A few months later, security personnel discovered that the employee's smart card was being used to access the building where she previously worked. Which of the following security controls could prevent such an incident from occurring?
Which of the following best describes the use of predictive analytics?
Which of the following characteristics applies to an organization that adopts a flat structure?

Question 221

Report
Export
Collapse

An organization suffered significant damage to its local: file and application servers as a result of a hurricane. Fortunately, the organization was able to recover all information backed up by its overseas third-party contractor. Which of the following approaches has been used by the organization?

A.
Application management
A.
Application management
Answers
B.
Data center management
B.
Data center management
Answers
C.
Managed security services
C.
Managed security services
Answers
D.
Systems integration
D.
Systems integration
Answers
Suggested answer: C

Question 222

Report
Export
Collapse

Which of the following IT disaster recovery plans includes a remote site designated for recovery with available space for basic services, such as internet and telecommunications, but does not have servers or infrastructure equipment?

A.
Frozen site
A.
Frozen site
Answers
B.
Cold site
B.
Cold site
Answers
C.
Warm site
C.
Warm site
Answers
D.
Hot site
D.
Hot site
Answers
Suggested answer: B

Question 223

Report
Export
Collapse

An internal auditor for a pharmaceutical company as planning a cybersecurity audit and conducting a risk assessment. Which of the following would be considered the most significant cyber threat to the organization?

A.
Cybercriminals hacking into the organization's time and expense system to collect employee personal data.
A.
Cybercriminals hacking into the organization's time and expense system to collect employee personal data.
Answers
B.
Hackers breaching the organization's network to access research and development reports
B.
Hackers breaching the organization's network to access research and development reports
Answers
C.
A denial-of-service attack that prevents access to the organization's website.
C.
A denial-of-service attack that prevents access to the organization's website.
Answers
D.
A hacker accessing she financial information of the company
D.
A hacker accessing she financial information of the company
Answers
Suggested answer: B

Question 224

Report
Export
Collapse

An internal audit activity is piloting a data analytics model, which aims to identify anomalies in payments to vendors and potential fraud indicators. Which of the following would be the most appropriate criteria for assessing the success of the piloted model?

A.
The percentage of cases flagged by the model and confirmed as positives.
A.
The percentage of cases flagged by the model and confirmed as positives.
Answers
B.
The development and maintenance costs associated with the model
B.
The development and maintenance costs associated with the model
Answers
C.
The feedback of auditors involved with developing the model.
C.
The feedback of auditors involved with developing the model.
Answers
D.
The number of criminal investigations initiated based on the outcomes of the model
D.
The number of criminal investigations initiated based on the outcomes of the model
Answers
Suggested answer: A

Question 225

Report
Export
Collapse

The board of directors wants to implement an incentive program for senior management that is specifically tied to the long-term health of the organization. Which of the following methods of compensation would be best to achieve this goal?

A.
Commissions.
A.
Commissions.
Answers
B.
Stock options
B.
Stock options
Answers
C.
Gain-sharing bonuses.
C.
Gain-sharing bonuses.
Answers
D.
Allowances
D.
Allowances
Answers
Suggested answer: B

Question 226

Report
Export
Collapse

Which component of an organization's cybersecurity risk assessment framework would allow management to implement user controls based on a user's role?

A.
Prompt response and remediation policy
A.
Prompt response and remediation policy
Answers
B.
Inventory of information assets
B.
Inventory of information assets
Answers
C.
Information access management
C.
Information access management
Answers
D.
Standard security configurations
D.
Standard security configurations
Answers
Suggested answer: C

Question 227

Report
Export
Collapse

Which of the following best describes the type of control provided by a firewall?

A.
Corrective
A.
Corrective
Answers
B.
Detective
B.
Detective
Answers
C.
Preventive
C.
Preventive
Answers
D.
Discretionary
D.
Discretionary
Answers
Suggested answer: C

Question 228

Report
Export
Collapse

What is the primary purpose of data and systems backup?

A.
To restore all data and systems immediately after the occurrence of an incident.
A.
To restore all data and systems immediately after the occurrence of an incident.
Answers
B.
To set the maximum allowable downtime to restore systems and data after the occurrence of an incident.
B.
To set the maximum allowable downtime to restore systems and data after the occurrence of an incident.
Answers
C.
To set the point in time to which systems and data must be recovered after the occurrence of an incident.
C.
To set the point in time to which systems and data must be recovered after the occurrence of an incident.
Answers
D.
To restore data and systems to a previous point in time after the occurrence of an incident
D.
To restore data and systems to a previous point in time after the occurrence of an incident
Answers
Suggested answer: D

Question 229

Report
Export
Collapse

Which of the following can be classified as debt investments?

A.
Investments in the capital stock of a corporation
A.
Investments in the capital stock of a corporation
Answers
B.
Acquisition of government bonds.
B.
Acquisition of government bonds.
Answers
C.
Contents of an investment portfolio,
C.
Contents of an investment portfolio,
Answers
D.
Acquisition of common stock of a corporation
D.
Acquisition of common stock of a corporation
Answers
Suggested answer: B

Question 230

Report
Export
Collapse

How can the concept of relevant cost help management with behavioral analyses?

A.
It explains the assumption mat both costs and revenues are linear through the relevant range
A.
It explains the assumption mat both costs and revenues are linear through the relevant range
Answers
B.
It enables management to calculate a minimum number of units to produce and sell without having to incur a loss.
B.
It enables management to calculate a minimum number of units to produce and sell without having to incur a loss.
Answers
C.
It enables management to predict how costs such as the depreciation of equipment will be affected by a change in business decisions
C.
It enables management to predict how costs such as the depreciation of equipment will be affected by a change in business decisions
Answers
D.
It enables management to make business decisions, as it explains the cost that will be incurred for a given course of action
D.
It enables management to make business decisions, as it explains the cost that will be incurred for a given course of action
Answers
Suggested answer: D
Total 340 questions
Go to page: of 34
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms