Which of the following would BEST detect that a distributed denial of service (DDoS) attack is occurring?

• A.Automated monitoring of logs
• B.Server crashes
• C.Customer service complaints
• D.Penetration testing

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the PRIMARY reason for an IS auditor to conduct post-implementation reviews?

• A.To document lessons learned to improve future project delivery
• B.To determine whether project objectives in the business case have been achieved
• C.To ensure key stakeholder sign-off has been obtained
• D.To align project objectives with business needs

Comment: *

Name: *

Email: *

Verification: *

When testing the accuracy of transaction data, which of the following situations BEST justifies the use of a smaller sample size?

• A.The IS audit staff has a high level of experience.
• B.It is expected that the population is error-free.
• C.Proper segregation of duties is in place.
• D.The data can be directly changed by users.

Comment: *

Name: *

Email: *

Verification: *

Which audit approach is MOST helpful in optimizing the use of IS audit resources?

• A.Outsourced auditing
• B.Continuous auditing
• C.Risk-based auditing
• D.Agile auditing

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST efficient way to identify segregation of duties violations in a new system?

• A.Review a report of security rights in the system.
• B.Examine recent system access rights violations.
• C.Observe the performance of business processes.
• D.Develop a process to identify authorization conflicts.

Comment: *

Name: *

Email: *

Verification: *