Which of the following is MOST helpful for measuring benefits realization for a new system?

• A.Post-implementation review
• B.Business impact analysis (BIA)
• C.Function point analysis
• D.Balanced scorecard review

Comment: *

Name: *

Email: *

Verification: *

When evaluating information security governance within an organization, which of the following findings should be of MOST concern to an IS auditor?

• A.The information security department has difficulty filling vacancies
• B.An information security governance audit was not conducted within the past year
• C.The data center manager has final sign-off on security projects
• D.Information security policies are updated annually

Comment: *

Name: *

Email: *

Verification: *

The BEST way to evaluate the effectiveness of a newly developed application is to:

• A.perform a post-implementation review-
• B.analyze load testing results.
• C.perform a secure code review.
• D.review acceptance testing results.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the GREATEST security risk associated with data migration from a legacy human resources (HR) system to a cloud-based system''

• A.System performance may be impacted by the migration
• B.Records past their retention period may not be migrated to the new system
• C.Data from the source and target system may have different data formats
• D.Data from the source and target system may be intercepted

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be an appropriate role of internal audit in helping to establish an organization's privacy program?

• A.Defining roles within the organization related to privacy
• B.Analyzing risks posed by new regulations
• C.Designing controls to protect personal data
• D.Developing procedures to monitor the use of personal data

Comment: *

Name: *

Email: *

Verification: *