What should be the PRIMARY basis for scheduling a follow-up audit?

• A.The availability of audit resources
• B.The time elapsed after audit report submission
• C.The significance of reported findings
• D.The completion of all corrective actions

Comment: *

Name: *

Email: *

Verification: *

A configuration management audit identified that predefined automated procedures are used when deploying and configuring application infrastructure in a cloud-based environment. Which of the following is MOST important for the IS auditor to review?

• A.Contracts of vendors responsible for maintaining provisioning tools
• B.Storage location of configuration management documentation
• C.Processes for making changes to cloud environment specifications
• D.Number of administrators with access to cloud management consoles

Comment: *

Name: *

Email: *

Verification: *

The MOST important reason that security risk assessment should be conducted frequently throughout an organization is because:

• A.threats to the organization may change.
• B.controls should be regularly tested.
• C.compliance with legal and regulatory standards should be reassessed.
• D.control effectiveness may weaken.

Comment: *

Name: *

Email: *

Verification: *

Atomicity enforces data integrity by ensuring that a transaction is either completed in its entirely or not at all. Atomicity is part of the ACID test reference for transaction processing.
True or false?

• A.True
• B.False

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is preparing a plan for audits to be carried out over a specified period. Which of the following activities should the IS auditor perform FIRST?

• A.Review prior audit reports.
• B.Determine the audit universe.
• C.Prioritize risks.
• D.Allocate audit resources.

Comment: *

Name: *

Email: *

Verification: *