Which of the following would be MOST time and cost efficient when performing a control self-assessment (CSA) for an organization with a large number of widely dispersed employees?

• A.Face-to-face interviews
• B.Top-down and bottom-up analysis
• C.Survey questionnaire
• D.Facilitated workshops

Comment: *

Name: *

Email: *

Verification: *

Which of the following concerns is BEST addressed by securing production source libraries?

• A.Changes are applied to the wrong version of production source libraries.
• B.Unauthorized changes can be moved into production.
• C.Production source and object libraries may not be synchronized.
• D.Programs are not approved before production source libraries are updated.

Comment: *

Name: *

Email: *

Verification: *

What must an IS auditor understand before performing an application audit?

• A.The potential business impact of application risks.
• B.Application risks must first be identified.
• C.Relative business processes.
• D.Relevant application risks.

Comment: *

Name: *

Email: *

Verification: *

Audit management has just completed the annual audit plan for the upcoming year, which consists entirely
of high-risk processes. However, it is determined that there are insufficient resources to execute the plan.
What should be done NEXT?

• A.Remove audits from the annual plan to better match the number of resources available
• B.Reduce the scope of the audits to better match the number of resources available
• C.Present the annual plan to the audit committee and ask for more resources
• D.Review the audit plan and defer some audits to the subsequent year

Comment: *

Name: *

Email: *

Verification: *

Java applets and ActiveX controls are distributed executable programs that execute in the background of a web browser client. This practice is considered reasonable when:

• A.a firewall exists.
• B.a secure web connection is used.
• C.the source of the executable file is certain.
• D.the host web site is part of the organization.

Comment: *

Name: *

Email: *

Verification: *