During an external assessment of network vulnerability, which of the following activities should be performed FIRST?

• A.Collect network information
• B.Implement an intrusion detection system (IDS)
• C.Monitor the network
• D.Review policies

Comment: *

Name: *

Email: *

Verification: *

.Off-site data backup and storage should be geographically separated so as to ________________ (fill in the blank) the risk of a widespread physical disaster such as a hurricane or earthquake.

• A.Accept
• B.Eliminate
• C.Transfer
• D.Mitigate

Comment: *

Name: *

Email: *

Verification: *

An IS auditor notes that nightly hatch processing is frequently incomplete for an application. The auditor should FIRST review controls over which of the following?

• A.Backup procedures
• B.Job notification
• C.Job scheduling
• D.Application logs

Comment: *

Name: *

Email: *

Verification: *

During a review of a customer master file, an IS auditor discovered numerous customer name duplications arising from variations in customer first names. To determine the extent of the duplication, the IS auditor would use:

• A.test data to validate data input.
• B.test data to determine system sort capabilities.
• C.generalized audit software to search for address field duplications.
• D.generalized audit software to search for account field duplications.

Comment: *

Name: *

Email: *

Verification: *

What should be done to determine the appropriate level of audit coverage for an organization's IT environment?

• A.determine the company's quarterly budget requirement.
• B.define an effective assessment methodology.
• C.calculate the company's yearly budget requirement.
• D.define an effective system upgrade methodology.
• E.define an effective network implementation methodology.

Comment: *

Name: *

Email: *

Verification: *