Free Access to ISACA.CISA.v2023-05-06.q329 with Valid Practice Test (Page 10)

Question 41

The FIRST step in auditing a data communication system is to determine:

A.the level of redundancy in the various communication paths
B.physical security for network equipment
C.traffic volumes and response-time criteria
D.business use and types of messages to be transmitted

Question 42

Which of the following is the PRIMARY objective of implementing privacy-related controls within an organization?

A.To prevent confidential data loss
B.To comply with legal and regulatory requirements
C.To identify data at rest and data in transit for encryption
D.To provide options to individuals regarding use of their data

Question 43

Which of the following findings should be of GREATEST concern to an IS auditor assessing the risk associated with end-user computing (EUC) in an organization?

A.Lack of defined criteria for EUC applications
B.Insufficient processes to lest for version control
C.Lack of awareness training for EUC users
D.Insufficient processes to track ownership of each EUC application?

Question 44

Which of the following would MOST effectively help to reduce the number of repealed incidents in an organization?

A.Training incident management teams on current incident trends
B.Linking incidents to problem management activities
C.Prioritizing incidents after impact assessment.
D.Testing incident response plans with a wide range of scenarios

Question 45

An organization has outsourced the development of a core application. However, the organization plans to bring the support and future maintenance of the application back in-house. Which of the following findings should be the IS auditor's GREATEST concern?

A.A training plan for business users has not been developed.
B.The vendor development team is located overseas.
C.The cost of outsourcing is lower than in-house development.
D.The data model is not clearly documented.

Question 41

Question 42

Question 43

Question 44

Question 45

Download PDF File