Which of the following acts as a decoy to detect active internet attacks?

• A.Honeypots
• B.Firewalls
• C.Trapdoors
• D.Traffic analysis

Comment: *

Name: *

Email: *

Verification: *

Which of the following is best suited for searching for address field duplications?

• A.Text search forensic utility software
• B.Generalized audit software
• C.Productivity audit software
• D.Manual review

Comment: *

Name: *

Email: *

Verification: *

An external IS auditor is reviewing the continuous monitoring system for a large bank and notes several potential issues. Which of the following would present the GREATEST concern regarding the reliability of the monitoring system?

• A.The measurement method is periodically varied.
• B.The monitoring system was configured by internal auditors.
• C.The system results are not regularly reviewed by management.
• D.The alert threshold is updated periodically.

Comment: *

Name: *

Email: *

Verification: *

A security company and service provider have merged and the CEO has requested one comprehensive set of security policies be developed for the newly formed company. The IS auditor s BEST recommendation would be to:

• A.adopt an industry standard security policy
• B.implement the service provider's policies
• C.conduct a policy gap assessment
• D.implement the security company s policies,

Comment: *

Name: *

Email: *

Verification: *

An audit report that specifies responsibility for the closure of noncompliance issues is BEST enhanced by including:

• A.target dates for remediation.
• B.detailed mitigating steps.
• C.cost estimates for remediation.
• D.a list of audit staff who will oversee remediation.

Comment: *

Name: *

Email: *

Verification: *