Free Access to ISACA.CISA.v2023-03-04.q546 with Valid Practice Test (Page 42)

Question 201

During a human resources (HR) audit, an IS auditor is informed that there is a verbal agreement between the IT and HR departments as to the level of IT services expected. In this situation, what should the IS auditor do FIRST?

A.Postpone the audit until the agreement is documented
B.Report the existence of the undocumented agreement to senior management
C.Confirm the content of the agreement with both departments
D.Draft a service level agreement (SLA) for the two departments

Question 202

What does PKI use to provide some of the strongest overall control over data confidentiality, reliability, and integrity for Internet transactions?

A.A combination of public-key cryptography and digital certificates and two-factor authentication
B.A combination of public-key cryptography and two-factor authentication
C.A combination of public-key cryptography and digital certificates
D.A combination of digital certificates and two-factor authentication

Question 203

Overall responsibility for approving logical access rights to information assets should reside with the:

A.systems delivery and operations group
B.systems administrator.
C.security administrator.
D.data and systems owners.

Question 204

During an IT governance audit, an IS auditor notes that IT policies and procedures are not regularly reviewed and updated. The GREATEST concern to the IS auditor is that p......

A.incorporate changes to relevant laws.
B.be subject to adequate quality assurance (QA).
C.include new systems and corresponding process changes
D.reflect current practices

Question 205

Which of the following is the MOST significant risk that IS auditors are required to consider for each engagement?

A.Irregularities and illegal acts
B.Process and resource inefficiencies
C.Noncompliance with organizational policies
D.Misalignment with business objectives

Question 201

Question 202

Question 203

Question 204

Question 205

Download PDF File