Which of the following is the MOST appropriate control to ensure integrity of online orders?

• A.Multi-factor authentication
• B.Public key encryption
• C.Digital signature
• D.Data Encryption Standard (DES)

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is evaluating the access controls for a shared customer relationship management (CRM) system. Which of the following would be the GREATEST concern?

• A.Security baseline is not consistently applied
• B.Complex passwords are not required
• C.Single sign-on is not enabled
• D.Audit logging is not enabled

Comment: *

Name: *

Email: *

Verification: *

An IT balanced scorecard is the MOST effective means of monitoring:

• A.change management effectiveness.
• B.control effectiveness.
• C.governance of enterprise IT.
• D.return on investment (ROI).

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important to verify when determining the completeness of the vulnerability scanning process?

• A.The organization's systems inventory is kept up to date.
• B.The organization is using a cloud-hosted scanning tool for Identification of vulnerabilities
• C.Access to the vulnerability scanning tool is periodically reviewed
• D.Vulnerability scanning results are reported to the CISO.

Comment: *

Name: *

Email: *

Verification: *

During an exit meeting, an IS auditor highlights that backup cycles
are being missed due to operator error and that these exceptions
are not being managed. Which of the following is the BEST way to
help management understand the associated risk?

• A.Explain the impact to disaster recovery.
• B.Explain the impact to incident management.
• C.Explain the impact to resource requirements.
• D.Explain the impact to backup scheduling.

Comment: *

Name: *

Email: *

Verification: *