Which of the following is the MOST important action in recovering from a cyberattack?

• A.Creation of an incident response team
• B.Use of cyber forensic investigators
• C.Execution of a business continuity plan
• D.Filling an insurance claim

Comment: *

Name: *

Email: *

Verification: *

An organization is concerned about duplicate vendor payments on a complex system with a high volume of
transactions. Which of the following would be MOST helpful to an IS auditor to determine whether duplicate
vendor payments exist?

• A.Computer-assisted technique
• B.Stop-and-go testing
• C.Statistical sampling
• D.Judgmental sampling

Comment: *

Name: *

Email: *

Verification: *

The database administrator (DBA) suggests that DB efficiency can be improved by denormalizing some
tables. This would result in:

• A.loss of confidentiality.
• B.increased redundancy.
• C.unauthorized accesses.
• D.application malfunctions.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is reviewing database log settings and notices that only INSERT and DELETE operations are being monitored in the database. What is the MOST significant risk?

• A.Metadata may not be logged
• B.Newly added records may not be logged
• C.Purged records may not be logged
• D.Changes to existing records may not be logged

Comment: *

Name: *

Email: *

Verification: *

During an audit of a disaster recovery plan (DRP) for a critical business area, an IS auditor finds that not all critical systems are covered. What should the auditor do NEXT?

• A.Evaluate the prior year's audit results regarding critical system coverage.
• B.Verify whether the systems are part of the business impact analysis (BIA).
• C.Escalate the finding to senior management.
• D.Evaluate the impact of not covering the systems.

Comment: *

Name: *

Email: *

Verification: *