CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 30
1. Which of the following should be the PRIMARY objective of an information security governance framework?
A) Increase the organization's return on security investment.
B) Provide a baseline for optimizing the security profile of the organization.
C) Ensure that users comply with the organization's information security policies.
D) Demonstrate compliance with industry best practices to external stakeholders.
2. An organization has developed mature risk management practices that are followed across all departments. What is the MOST effective way for the audit team to leverage this risk management maturity?
A) Facilitating audit risk identification and evaluation workshops
B) Implementing risk responses on management's behalf
C) Providing assurances to management regarding risk
D) Integrating the risk register for audit planning purposes
3. Which of the following findings would be of GREATEST concern to an IS auditor performing an information security audit of critical server log management activities?
A) Log records can be overwritten before being reviewed.
B) Logging procedures are insufficiently documented.
C) Log records are dynamically into different servers.
D) Logs are monitored using manual processes.
4. The BEST way to validate whether a malicious act has actually occurred in an application is to review:
A) segregation of duties
B) access controls
C) activity logs
D) change management logs
5. A vulnerability in which of the following virtual systems would be of GREATEST concern to the IS auditor?
A) The virtual machine management server
B) The virtual file server
C) The virtual application server
D) The virtual antivirus server
A) Increase the organization's return on security investment.
B) Provide a baseline for optimizing the security profile of the organization.
C) Ensure that users comply with the organization's information security policies.
D) Demonstrate compliance with industry best practices to external stakeholders.
2. An organization has developed mature risk management practices that are followed across all departments. What is the MOST effective way for the audit team to leverage this risk management maturity?
A) Facilitating audit risk identification and evaluation workshops
B) Implementing risk responses on management's behalf
C) Providing assurances to management regarding risk
D) Integrating the risk register for audit planning purposes
3. Which of the following findings would be of GREATEST concern to an IS auditor performing an information security audit of critical server log management activities?
A) Log records can be overwritten before being reviewed.
B) Logging procedures are insufficiently documented.
C) Log records are dynamically into different servers.
D) Logs are monitored using manual processes.
4. The BEST way to validate whether a malicious act has actually occurred in an application is to review:
A) segregation of duties
B) access controls
C) activity logs
D) change management logs
5. A vulnerability in which of the following virtual systems would be of GREATEST concern to the IS auditor?
A) The virtual machine management server
B) The virtual file server
C) The virtual application server
D) The virtual antivirus server
1. Right Answer: B
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment