IS management has decided to install a level 1 Redundant Array of Inexpensive Disks (RAID) system in all
servers to compensate for the elimination of offsite backups. The IS auditor should recommend:

• A.upgrading to a level 5 RAID.
• B.increasing the frequency of onsite backups.
• C.reinstating the offsite backups.
• D.establishing a cold site in a secure location.

Comment: *

Name: *

Email: *

Verification: *

Who is ultimately responsible and accountable for reviewing user access to systems?

• A.Systems security administrators
• B.Data custodians
• C.Data owners
• D.Information systems auditors

Comment: *

Name: *

Email: *

Verification: *

The PRIMARY objective of Secure Sockets Layer (SSL) is to ensure:

• A.only the sender and receiver are able to encrypt/decrypt the data.
• B.the sender and receiver can authenticate their respective identities.
• C.the alteration of transmitted data can be detected.
• D.the ability to identify the sender by generating a one-time session key.

Comment: *

Name: *

Email: *

Verification: *

What control detects transmission errors by appending calculated bits onto the end of each segment of data?

• A.Reasonableness check
• B.Parity check
• C.Redundancy check
• D.Check digits

Comment: *

Name: *

Email: *

Verification: *

There is a concern that a salesperson may download an organization's full customer list from the Software
as a Service (SaaS) when leaving to work for a competitor. Which of the following would BEST help to
identify this type of incident?

• A.Monitor applications logs
• B.Disable remote access to the application
• C.Implement a web application firewall
• D.Implement an intrusion detection system (IDS)

Comment: *

Name: *

Email: *

Verification: *