When performing an IS strategy audit, an IS auditor should review both short-term (one- year) and long-
term (three-to five-year) IS strategies, interview appropriate corporate management personnel, and ensure
that the external environment has been considered. The auditor should especially focus on procedures in
an audit of IS strategy. True or false?

• A.True
• B.False

Comment: *

Name: *

Email: *

Verification: *

After observing suspicious activities in a server, a manager requests a forensic analysis. Which of the following findings should be of MOST concern to the investigator?

• A.Server is a member of a workgroup and not part of the server domain
• B.Guest account is enabled on the server
• C.Recently, 100 users were created in the server
• D.Audit logs are not enabled for the server

Comment: *

Name: *

Email: *

Verification: *

Which of the following is best suited for searching for address field duplications?

• A.Text search forensic utility software
• B.Generalized audit software
• C.Productivity audit software
• D.Manual review

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST control lo mitigate attacks that redirect Internet traffic to an unauthorized website?

• A.Utilize a network-based firewall.
• B.Conduct regular user security awareness training.
• C.Perform domain name system (DNS) server security hardening.
• D.Enforce a strong password policy meeting complexity requirements.

Comment: *

Name: *

Email: *

Verification: *

Which of the following virus prevention techniques can be implemented through hardware?

• A.Remote booting
• B.Heuristic scanners
• C.Behavior blockers
• D.Immunizers

Comment: *

Name: *

Email: *

Verification: *