Which of the following BEST guards against the risk of attack by hackers?

• A.Encryption
• B.Message validation
• C.Firewalls
• D.Tunneling

Comment: *

Name: *

Email: *

Verification: *

To develop meaningful recommendations 'or findings, which of the following is MOST important 'or an IS auditor to determine and understand?

• A.impact
• B.Root cause
• C.Responsible party
• D.Criteria

Comment: *

Name: *

Email: *

Verification: *

Which of the following observations would an IS auditor consider the GREATEST risk when conducting an audit of a virtual server farm tor potential software vulnerabilities?

• A.A variety of guest operating systems operate on one virtual server
• B.The hypervisor is updated quarterly.
• C.Antivirus software has been implemented on the guest operating system only.
• D.Guest operating systems are updated monthly

Comment: *

Name: *

Email: *

Verification: *

An organization has recently moved to an agile model for deploying custom code to its in-house accounting software system. When reviewing the procedures in place for production code deployment, which of the following is the MOST significant security concern to address?

• A.Production code deployment is not automated.
• B.Current DevSecOps processes have not been independently verified.
• C.Software vulnerability scanning is done on an ad hoc basis.
• D.Change control does not include testing and approval from quality assurance (QA).

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST way to ensure that business continuity plans (BCPs) will work effectively in the event of a major disaster?

• A.Make senior managers responsible for their plan sections.
• B.Prepare detailed plans for each business function.
• C.Involve staff at all levels in periodic paper walk-through exercises
• D.Regularly update business impact assessments

Comment: *

Name: *

Email: *

Verification: *