CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 9
1. An IS auditor reviewing a new application for compliance with information privacy principles should be the MOST concerned with:
A) nonrepudiation
B) collection limitation
C) availability
D) awareness
2. Which of the following is the PRIMARY reason for an IS auditor to issue an interim audit report?
A) To avoid issuing a final audit report
B) To enable the auditor to complete the engagement in a timely manner
C) To provide feedback to the auditee for timely remediation
D) To provide follow-up opportunity during the audit
3. Which of the following conditions would be of MOST concern to an IS auditor assessing the risk of a successful brute force attack encrypted data at rest?
A) Use of symmetric encryption
B) Use of asymmetric encryption
C) Random key generation
D) Short key length
4. In which of the following SDLC phases would the IS auditor expect to find that controls have been incorporated into system specifications?
A) Development
B) Implementation
C) Design
D) Feasibility
5. An IS auditor has been invited to join an IT project team responsible for building and deploying a new digital customer marketing platform. Which of the following is the BEST way for the auditor to support this project while maintaining independence?
A) Develop selection criteria for potential digital technology vendors.
B) Conduct an industry peer benchmarking exercise and advise on alternative solutions.
C) Conduct a risk assessment of the proposed initiative.
D) Design controls based on current regulatory requirements for digital technologies.
A) nonrepudiation
B) collection limitation
C) availability
D) awareness
2. Which of the following is the PRIMARY reason for an IS auditor to issue an interim audit report?
A) To avoid issuing a final audit report
B) To enable the auditor to complete the engagement in a timely manner
C) To provide feedback to the auditee for timely remediation
D) To provide follow-up opportunity during the audit
3. Which of the following conditions would be of MOST concern to an IS auditor assessing the risk of a successful brute force attack encrypted data at rest?
A) Use of symmetric encryption
B) Use of asymmetric encryption
C) Random key generation
D) Short key length
4. In which of the following SDLC phases would the IS auditor expect to find that controls have been incorporated into system specifications?
A) Development
B) Implementation
C) Design
D) Feasibility
5. An IS auditor has been invited to join an IT project team responsible for building and deploying a new digital customer marketing platform. Which of the following is the BEST way for the auditor to support this project while maintaining independence?
A) Develop selection criteria for potential digital technology vendors.
B) Conduct an industry peer benchmarking exercise and advise on alternative solutions.
C) Conduct a risk assessment of the proposed initiative.
D) Design controls based on current regulatory requirements for digital technologies.
1. Right Answer: B
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: C
Explanation:
3. Right Answer: D
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: A
Explanation:
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment