A live test of a mutual agreement for IT system recovery has been carried out, including a four- hour test of
intensive usage by the business units. The test has been successful, but gives only partial assurance that
the:

• A.system and the IT operations team can sustain operations in the emergency environment.
• B.resources and the environment could sustain the transaction load.
• C.connectivity to the applications at the remote site meets response time requirements.
• D.workflow of actual business operations can use the emergency system in case of a disaster.

Comment: *

Name: *

Email: *

Verification: *

A comprehensive and effective e-mail policy should address the issues of e-mail structure, policy enforcement, monitoring and:

• A.recovery.
• B.retention.
• C.rebuilding.
• D.reuse.

Comment: *

Name: *

Email: *

Verification: *

An audit charter should:

• A.be dynamic and change often to coincide with the changing nature of technology and the audit profession.
• B.clearly state audit objectives for, and the delegation of, authority to the maintenance and review of internal controls.
• C.document the audit procedures designed to achieve the planned audit objectives.
• D.outline the overall authority, scope and responsibilities of the audit function.

Comment: *

Name: *

Email: *

Verification: *

Which of the following would contribute MOST to an effective business continuity plan (BCP)?

• A.Document is circulated to all interested parties
• B.Planning involves all user departments
• C.Approval by senior management
• D.Audit by an external IS auditor

Comment: *

Name: *

Email: *

Verification: *

To create a digital signature in a message using asymmetric encryption, it is necessary to:

• A.transmit the actual digital signature in unencrypted clear text.
• B.First use a symmetric algorithm for the authentication sequence.
• C.encrypt the authentication sequence using a public key.
• D.encrypt the authentication sequence using a private key.

Comment: *

Name: *

Email: *

Verification: *