Which of the following would an IS auditor recommend as the MOST effective preventive control to reduce the risk of data leakage'

• A.Validate that all data files contain digital watermarks
• B.Ensure that paper documents arc disposed security.
• C.Implement an intrusion detection system (IDS).
• D.Verify that application logs capture any changes made.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is an example of a preventative control in an accounts payable system?

• A.Policies and procedures are clearly communicated to all members of the accounts payable department.
• B.The system only allows payments to vendors who are included in the system's master vendor list.
• C.Backups of the system and its data are performed on a nightly basis and tested periodically.
• D.The system produces daily payment summary reports that staff use to compare against invoice totals.

Comment: *

Name: *

Email: *

Verification: *

An organization's IT risk assessment should include the identification of:

• A.business needs
• B.compensating controls
• C.vulnerabilities
• D.business process owners

Comment: *

Name: *

Email: *

Verification: *

What is MOST important to verify during an external assessment of network vulnerability?

• A.Location of intrusion detection systems (IDS)
• B.Update of security information event management (SIEM) rules
• C.Regular review of the network security policy
• D.Completeness of network asset inventory

Comment: *

Name: *

Email: *

Verification: *

A warehouse employee of a retail company has been able to conceal the theft of inventory items by entering adjustments of either damaged or lost stock items lo the inventory system. Which control would have BEST prevented this type of fraud in a retail environment?

• A.Unscheduled audits of lost stock lines
• B.Separate authorization for input of transactions
• C.An edit check for the validity of the inventory transaction
• D.Statistical sampling of adjustment transactions

Comment: *

Name: *

Email: *

Verification: *