A programmer has made unauthorized changes lo key fields in a payroll system report. Which of the following control weaknesses would have contributed MOST to this problem?

• A.Payroll files were not under the control of a librarian
• B.The programmer has access to the production programs
• C.The programmer did not involve the user in testing
• D.The user requirements were not documented

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is asked to review an organization's technology relationships, interfaces, and dat a. Which of the following enterprise architecture (EA) areas is MOST appropriate this review? (Choose Correct answer and give explanation from CISA Certification - Information Systems Auditor official book)

• A.Reference architecture
• B.Infrastructure architecture
• C.Information security architecture
• D.Application architecture

Comment: *

Name: *

Email: *

Verification: *

An organization is disposing of a system containing sensitive data and has deleted all files from the hard disk. An IS auditor should be concerned because:

• A.deleting all files separately is not as efficient as formatting the hard disk.
• B.deleting the files logically does not overwrite the files' physical data.
• C.backup copies of files were not deleted as well.
• D.deleted data cannot easily be retrieved.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important during software license audits?

• A.Judgmental sampling
• B.Substantive testing
• C.Compliance testing
• D.Stop-or-go sampling

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST indicator of the effectiveness of signature-based intrusion detection systems (lDS)?

• A.An increase in the number of unfamiliar sources of intruders
• B.An increase in the number of internally reported critical incidents
• C.An increase in the number of identified false positives
• D.An increase in the number of detected Incidents not previously identified

Comment: *

Name: *

Email: *

Verification: *