Free Access to ISACA.CISA.v2022-02-26.q471 with Valid Practice Test (Page 57)

Request Exam Contact

Home
View All Exams
New QA's
Upload

PRACTICE EXAMS:

Oracle
Fortinet
Juniper
Microsoft
Cisco
Citrix
CompTIA
VMware
SAP
EMC
PMI
HP
Salesforce
Other

Oracle
Fortinet
Juniper
Microsoft
Cisco
Citrix
CompTIA
VMware
SAP
EMC
PMI
HP
Salesforce

Home
ISACA Certification
CISA Exam
ISACA.CISA.v2022-02-26.q471 Dumps

««
«
…
52
53
54
55
56
57
58
59
60
61
…
»
»»

Question 276

To assist an organization in planning for IT investments, an IS auditor should recommend the use of:

A.project management tools.
B.an object-oriented architecture.
C.tactical planning.
D.enterprise architecture (EA).

Correct Answer: D

Section: Protection of Information Assets
Explanation:
Enterprise architecture (EA) involves documenting the organization's IT assets and processes in a structured manner to facilitate understanding, management and planning for IT investments. It involves both a current state and a representation of an optimized future state. In attempting to complete an EA, organizations can address the problem either from a technology perspective or a business process perspective. Project management does not consider IT investment aspects; it is a tool to aid in delivering projects. Object-oriented architecture is a software development methodology and does not assist in planning for IT investment, while tactical planning is relevant only after high-level IT investment decisions have been made.

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 277

What can be used to help identify and investigate unauthorized transactions?

A.Postmortem review
B.Reasonableness checks
C.Data-mining techniques
D.Expert systems

Correct Answer: C

Explanation/Reference:
Explanation:
Data-mining techniques can be used to help identify and investigate unauthorized transactions.

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 278

An IS auditor is reviewing the remote access methods of a company used to access system remotely.
Which of the following is LEAST preferred remote access method from a security and control point of view?

A.RADIUS
B.TACACS
C.DIAL-UP
D.DIAMETER

Correct Answer: C

Section: Protection of Information Assets
Explanation:
Dial-up connectivity not based on centralize control and least preferred from security and control standpoint.
Remote access user can connect remotely to their organization's networks with the same level of functionality as if they would access from within their office.
In connecting to an organization's network, a common method is to use dial-up lines. Access is granted through the organization's network access server (NAS) working in concert with an organization network firewall and router. The NAS handle user authentication, access control and accounting while maintaining connectivity. The most common protocol for doing this is the Remote Access Dial-In User Service (RADIUS) and Terminal Access Controller Access Controller System (TACACS).
Remote access Controls include:
Policy and standard
Proper authorization
Identification and authentication mechanism
Encryption tool and technique such as use of VPN
System and network management
Reference:
CISA Review Manual 2014 Page number 334

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 279

What is the purpose of using a write blocker during the acquisition phase of a digital forensics investigation?

A.To preserve chain of custody
B.To protect against self-destruct utilities
C.To prevent the activation of installed malware
D.To prevent evidence alteration

Correct Answer: D

Section: Information System Operations, Maintenance and Support

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 280

The vice president of human resources has requested an audit to identify payroll overpayments for the previous year. Which would be the BEST audit technique to use in this situation? A) Test data

A.Generalized audit software
B.Integrated test facility
C.Embedded audit module

Correct Answer: B

Generalized audit software features include mathematical computations, stratification, statistical analysis, sequence checking, duplicate checking and recomputations . An IS auditor, using generalized audit software, could design appropriate tests torecompute the payroll, thereby determining if there were overpayments and to whom they were made. Test data would test for the existence of controls that might prevent overpayments, but it would not detect specific, previous miscalculations. Neitheran integrated test facility nor an embedded audit module would detect errors for a previous period.

Comment: *

Name: *

Email: *

Verification: *

insert code

««
«
…
52
53
54
55
56
57
58
59
60
61
…
»
»»

[×]

Download PDF File

Enter your email address to download ISACA.CISA.v2022-02-26.q471 Dumps

Email:

Our website provides the Largest and the most Latest vendors Certification Exam materials around the world.

Using dumps we provide to Pass the Exam, we has the Valid Dumps with passing guranteed just which you need.

DMCA
About
Contact Us
Privacy Policy
Terms & Conditions

©2026 FreeQAs

www.freeqas.com materials do not contain actual questions and answers from Cisco's certification exams.

Web Analytics Made Easy - Statcounter