Which of the following is a method to prevent disclosure of classified documents printed on a shared printer?

• A.Using passwords to allow authorized users to send documents to the printer
• B.Requiring a key code to be entered on the printer to produce hard copy
• C.Encrypting the data stream between the user's computer and the printer
• D.Producing a header page with classification level for printed documents

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the GREATEST benefit of adopting an international IT governance framework rather than establishing a new framework based on the actual situation of a specific organization1?

• A.Comprehensive coverage of fundamental and critical risk and control areas for IT governance
• B.Readily available resources such as domains and risk and control methodologies
• C.Wide acceptance by different business and support units with IT governance objectives
• D.Fewer resources expended on trial-and-error attempts to fine-tune implementation methodologies

Comment: *

Name: *

Email: *

Verification: *

When an intrusion into an organization network is deleted, which of the following should be done FIRST?

• A.Block all compromised network nodes.
• B.Notify senior management.
• C.Contact law enforcement.
• D.Identity nodes that have been compromised.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor notes that not all security tests were completed for an online sales system recently promoted to production. Which of the following is the auditor's BEST course of action?

• A.Adjust future testing activities accordingly
• B.Determine exposure to the business
• C.Increase monitoring for security incidents
• D.Hire a third party to perform security testing

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be the BEST process for continuous auditing to a large financial Institution?

• A.Validating performance of help desk metrics
• B.Performing parallel testing between systems
• C.Validating access controls for real-time data systems
• D.Testing encryption standards on the disaster recovery system

Comment: *

Name: *

Email: *

Verification: *