An IS auditor invited to a development project meeting notes that no project risks have been documented.
When the IS auditor raises this issue, the project manager responds that it is too early to identify risks and that, if risks do start impacting the project, a risk manager will be hired. The appropriate response of the IS auditor would be to:

• A.stress the importance of spending time at this point in the project to consider and document risks, and to develop contingency plans.
• B.accept the project manager's position as the project manager is accountable for the outcome of the project.
• C.offer to work with the risk manager when one is appointed.
• D.inform the project manager that the IS auditor will conduct a review of the risks at the completion of the requirements definition phase of the project.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the GREATEST concern when an organization's backup facility is at a warm site?

• A.Timely availability of hardware
• B.Availability of heat, humidity and air conditioning equipment
• C.Adequacy of electrical power connections
• D.Effectiveness of the telecommunications network

Comment: *

Name: *

Email: *

Verification: *

The use of residual biometric information to gain unauthorized access is an example of which of the
following attacks?

• A.Replay
• B.Brute force
• C.Cryptographic
• D.Mimic

Comment: *

Name: *

Email: *

Verification: *

While evaluating software development practices in an organization, an IS auditor notes that the quality assurance (QA) function reports to project management. The MOST important concern for an IS auditor is the:

• A.effectiveness of the QA function because it should interact between project management and user management
• B.efficiency of the QA function because it should interact with the project implementation team.
• C.effectiveness of the project manager because the project manager should interact with the QA function.
• D.efficiency of the project manager because the QA function will need to communicate with the project implementation team.

Comment: *

Name: *

Email: *

Verification: *

The quality of the metadata produced from a data warehouse is _______________ in the warehouse's design. Choose the BEST answer.

• A.Often hard to determine because the data is derived from a heterogeneous data environment
• B.The most important consideration
• C.Independent of the quality of the warehoused databases
• D.Of secondary importance to data warehouse content

Comment: *

Name: *

Email: *

Verification: *