During an audit, it is discovered that several suppliers with standing orders have been deleted from the supplier master file. Which of the following controls would have BEST prevented such an occurrence?

• A.Referential integrity
• B.Existence check
• C.Table look-ups
• D.Logical relationship check

Comment: *

Name: *

Email: *

Verification: *

An IS audit reveals that an organization is not proactively addressing known vulnerabilities. Which of the following should the IS auditor recommend the organization do FIRST?

• A.Confirm the incident response team understands the issue.
• B.Verify the disaster recovery plan (DRP) has been tested.
• C.Ensure the intrusion prevention system (IPS) is effective.
• D.Assess the security risks to the business.

Comment: *

Name: *

Email: *

Verification: *

A new regulation requires organizations to report significant security incidents to the regulator within 24 hours of identification. Which of the following is the IS auditor s BEST recommendation to facilitate compliance with the regulation?

• A.Include the requirement in the incident management response plan.
• B.Enhance the alert functionality of the intrusion detection system (IDS).
• C.Engage an external security incident response expert for incident handling.
• D.Establish key performance indicators (KPIs) for timely identification of security incidents.

Comment: *

Name: *

Email: *

Verification: *

IT disaster recovery time objectives (RTOs) should be based on the:

• A.maximum tolerable loss of data.
• B.nature of the outage
• C.maximum tolerable downtime (MTD).
• D.business-defined criticality of the systems.

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST provides continuous availability of network bandwidth for critical application services?

• A.Quality of service (QoS)
• B.Cloud computing
• C.Configuration management
• D.Problem management

Comment: *

Name: *

Email: *

Verification: *