Which of the following processes should an IS auditor recommend to assist in the recording of baselines for software releases?

• A.Change management
• B.Backup and recovery
• C.incident management
• D.Configuration management

Comment: *

Name: *

Email: *

Verification: *

An organization allows employees to use personally owned mobile devices to access customer's personal information. An IS auditor's GREATEST concern should be whether

• A.Devices have adequate storage and backup capabilities
• B.Devices have the capability to segregate business and personal data.
• C.Mobile device security policies have been implemented
• D.Mobile devices are compatible with company infrastructure

Comment: *

Name: *

Email: *

Verification: *

As a driver of IT governance, transparency of IT's cost, value and risks is primarily achieved through:

• A.performance measurement.
• B.strategic alignment.
• C.value delivery.
• D.resource management.

Comment: *

Name: *

Email: *

Verification: *

An organization has a mix of access points that cannot be upgraded to stronger security and newer access points having advanced wireless security. An IS auditor recommends replacing the nonupgradeabie access points. Which of the following would BEST justify the IS auditor's recommendation?

• A.The new access points with stronger security are affordable.
• B.The old access points are poorer in terms of performance.
• C.The organization's security would be as strong as its weakest points.
• D.The new access points are easier to manage.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the FIRST consideration when developing a data retention policy?

• A.Designing an infrastructure storage strategy
• B.Determining the backup cycle based on retention period
• C.Determining the security access privileges to the data
• D.Identifying the legal and contractual retention period for data

Comment: *

Name: *

Email: *

Verification: *