Which of the following is the BEST audit procedure to determine whether a firewall is configured in compliance with the organization's security policy?

• A.Interviewing the firewall administrator
• B.Reviewing the actual procedures
• C.Reviewing the parameter settings
• D.Reviewing the system log

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important to include in forensic data collection and preservation procedures?

• A.Maintaining chain of custody
• B.Preserving data integrity
• C.Determining tools to be used
• D.Assuring the physical security of devices

Comment: *

Name: *

Email: *

Verification: *

One advantage of monetary unit sampling is the fact that

• A.it can easily be applied manually when computer resources are not available
• B.it increases the likelihood of selecting material items from the population
• C.large-value population items are segregated and audited separately
• D.results are stated m terms of the frequency of items in error

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the GREATEST concern associated with a high number of IT policy exceptions approved by management?

• A.The exceptions may result in noncompliance.
• B.The exceptions may negatively impact process efficiency
• C.The exceptions may elevate the level of operational risk.
• D.The exceptions are likely to continue indefinitely.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor will be testing accounts payable controls by performing data analytics on the entire population of transactions. Which of the following is MOST important for the auditor to confirm when sourcing the population data?

• A.There is no privacy information in the data.
• B.The data analysis tools have been recently updated.
• C.The data is taken directly from the system.
• D.The data can be obtained in a timely manner.

Comment: *

Name: *

Email: *

Verification: *