CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 17
1. During a follow-up audit, an IS auditor learns the organization implemented an automated process instead of the originally agreed upon enhancement of the manual process. The auditor should:
A) report the finding that recommendations were not acted upon
B) perform a cost-benefit analysis on the new process
C) verify that the new process satisfies control objectives
D) report the recommendation as implemented
2. During a privileged access review, an IS auditor observes many help desk employees have privileges within systems not required for their job functions.Implementing which of the following would have prevented this situation?
A) Separation of duties
B) Multi-factor authentication
C) Least privilege access
D) Privileged access reviews
3. Management disagrees with a finding in a draft audit report and provides supporting documentation. Which of the following should be the IS auditor's NEXT course of action?
A) Document management's disagreement in the final report
B) Evaluate the supporting documentation
C) Escalate the issue with supporting documentation to senior management
D) Finalize the draft audit report without changes
4. Which of the following audit techniques is MOST appropriate for verifying application program controls?
A) Statistical sampling
B) Code review
C) Confirmation of accounts
D) Use of test data
5. A business has requested an IS audit to determine whether information stored in an application system is adequately protected. Which of the following is theMOST important action before the audit work begins?
A) Establish control objectives
B) Conduct a vulnerability analysis
C) Perform penetration testing
D) Review remediation reports
A) report the finding that recommendations were not acted upon
B) perform a cost-benefit analysis on the new process
C) verify that the new process satisfies control objectives
D) report the recommendation as implemented
2. During a privileged access review, an IS auditor observes many help desk employees have privileges within systems not required for their job functions.Implementing which of the following would have prevented this situation?
A) Separation of duties
B) Multi-factor authentication
C) Least privilege access
D) Privileged access reviews
3. Management disagrees with a finding in a draft audit report and provides supporting documentation. Which of the following should be the IS auditor's NEXT course of action?
A) Document management's disagreement in the final report
B) Evaluate the supporting documentation
C) Escalate the issue with supporting documentation to senior management
D) Finalize the draft audit report without changes
4. Which of the following audit techniques is MOST appropriate for verifying application program controls?
A) Statistical sampling
B) Code review
C) Confirmation of accounts
D) Use of test data
5. A business has requested an IS audit to determine whether information stored in an application system is adequately protected. Which of the following is theMOST important action before the audit work begins?
A) Establish control objectives
B) Conduct a vulnerability analysis
C) Perform penetration testing
D) Review remediation reports
1. Right Answer: C
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: D
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment