During the planning stage of a compliance audit an IS auditor discovers that a bank's Inventory of compliance requirements does not include recent regulatory changes related to managing data risk. What should the auditor do FIRST?

• A.Exclude recent regulatory changes from the audit scope
• B.Report the missing regulatory updates to the chief information officer (CIO)
• C.Discuss potential regulatory issues with the legal department.
• D.Ask management why the regulatory changes have not been included

Comment: *

Name: *

Email: *

Verification: *

Which of the following provides the BEST assurance of data integrity after file transfers?

• A.Reasonableness check
• B.Hash values
• C.Monetary unit sampling
• D.Check digits

Comment: *

Name: *

Email: *

Verification: *

Which of the following should an IS auditor review FIRST when planning a customer data privacy audit?

• A.Data classification
• B.Customer agreements
• C.Legal and compliance requirements
• D.Organizational policies and procedures

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be MOST effective to protect information assets in a data center from theft by a vendor?

• A.Monitor and restrict vendor activities
• B.Conceal data devices and information labels
• C.Issues an access card to the vendor.
• D.Restrict use of portable and wireless devices.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the PRIMARY advantage of using visualization technology for corporate applications?

• A.Better utilization of resources
• B.Increased application performance
• C.Stronger data security
• D.Improved disaster recovery

Comment: *

Name: *

Email: *

Verification: *