When planning an audit to assess application controls of a cloud-based system, it is MOST important tor the IS auditor to understand the.

• A.availability reports associated with the cloud-based system.
• B.policies and procedures of the business area being audited.
• C.business process supported by the system.
• D.architecture and cloud environment of the system.

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST Indicates that an incident management process Is effective?

• A.Decreased time for incident resolution
• B.Decreased number of calls lo the help desk
• C.Increased number of incidents reviewed by IT management
• D.Increased number of reported critical incidents

Comment: *

Name: *

Email: *

Verification: *

A credit card company has decided to outsource the printing of customer statements It Is MOST important for the company to verify whether:

• A.the provider adheres to the company's data retention policies.
• B.the provider has alternate service locations.
• C.the provider's information security controls are aligned with the company's.
• D.the contract includes compensation for deficient service levels.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is an IS auditor's BEST recommendation to protect an organization from attacks when its file server needs to be accessible to external users?

• A.Enforce a secure tunnel connection.
• B.Enhance internal firewalls.
• C.Set up a demilitarized zone (DMZ).
• D.Implement a secure protocol.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST way to ensure that an application is performing according to its specifications?

• A.System testing
• B.Pilot testing
• C.Unit testing
• D.Integration testing

Comment: *

Name: *

Email: *

Verification: *