Free Access to ISACA.CISA.v2022-02-26.q471 with Valid Practice Test (Page 77)

Question 376

Which of the following access control situations represents the MOST serious control weakness?

A.Computer operators have access to system level flowcharts.
B.Programmers have access to development hardware.
C.End users have access to program development tools.
D.System developers have access to production data.

Question 377

Which of the following represents the GREATEST potential risk in an EDI environment?

A.Transaction authorization
B.Loss or duplication of EDI transmissions
C.Transmission delay
D.Deletion or manipulation of transactions prior to or after establishment of application controls

Question 378

An organization wants to replace its suite of legacy applications with a new, in-house developed solution.
Which of the following is the BEST way to address concerns associated with migration of all mission-critical business functionality?

A.Increase testing efforts so that all possible combinations of data have been tested prior to go-live.
B.Strengthen governance by hiring certified and qualified project managers for the migration.
C.Plan multiple releases to gradually migrate subsets of functionality to reduce production risk.
D.Expedite go-live by migrating in a single release to allow more time for testing in production.

Question 379

An IS auditor observes a weakness in the tape management system at a data center in that some parameters are set to bypass or ignore tape header records. Which of the following is the MOST effective compensating control for this weakness?

A.Staging and job set up
B.Supervisory review of logs
C.Regular back-up of tapes
D.Offsite storage of tapes

Question 380

Digital signatures require the sender to "sign" the data by encrypting the data with the sender's public key, to then be decrypted by the recipient using the recipient's private key.
True or false?

A.False
B.True

Question 376

Question 377

Question 378

Question 379

Question 380

Download PDF File