Which of the following should an IS auditor consider the MOST significant risk associated with a new health records system that replaces a legacy system?

• A.Data is not converted correctly, resulting in inaccurate patient records.
• B.The new system has capacity issues, leading to slow response times for users.
• C.The deployment project experienced significant overruns, exceeding budget projections.
• D.Staff were not involved in the procurement process, creating user resistance to the new system.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important prerequisite for the protection of physical information assets in a data center?

• A.Complete and accurate list of information assets that have been deployed
• B.Knowledge of the IT staff regarding data protection requirements
• C.Availability and testing of onsite backup generators
• D.Segregation of duties between staff ordering and staff receiving information assets

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is performing a follow-up audit for findings identified in an organization's user provisioning process Which of the following is the MOST appropriate population to sample from when testing for remediation?

• A.All users who have followed user provisioning processes provided by management
• B.All users provisioned after the final audit report was issued
• C.All users provisioned after management resolved the audit issue
• D.All users provisioned after the finding was originally identified

Comment: *

Name: *

Email: *

Verification: *

Audit frameworks cart assist the IS audit function by:

• A.defining the authority and responsibility of the IS audit function.
• B.providing details on how to execute the audit program.
• C.providing direction and information regarding the performance of audits.
• D.outlining the specific steps needed to complete audits

Comment: *

Name: *

Email: *

Verification: *

An employee loses a mobile device resulting in loss of sensitive corporate dat a. Which o( the following would have BEST prevented data leakage?

• A.Complex password policy for mobile devices
• B.Data encryption on the mobile device
• C.Awareness training for mobile device users
• D.The triggering of remote data wipe capabilities

Comment: *

Name: *

Email: *

Verification: *