An organization is implementing a new system to replace a legacy system. Which of the following conversion practices creates the GREATEST risk?

• A.Pilot
• B.Parallel
• C.Direct cutover
• D.Phased

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be the MOST efficient audit approach, given that a compliance-based approach was adopted in the previous year?

• A.interview systems personnel to evaluate all automated controls
• B.Validate all applications using test data
• C.Evaluate the controls surrounding changes to programs.
• D.Perform a review of significant transactions posted within the system

Comment: *

Name: *

Email: *

Verification: *

An IS auditor finds that corporate mobile devices used by employees have varying levels of password settings. Which of the following would be the BEST recommendation?

• A.Apply security policy to the mobile devices.
• B.Update the acceptable use policy for mobile devices.
• C.Notify employees to set passwords to a specified length
• D.Encrypt data between corporate gateway and devices.

Comment: *

Name: *

Email: *

Verification: *

During a review, an IS auditor notes that an organization's marketing department has purchased a cloud-based software application without following the procurement process. What should the auditor do FIRST?

• A.Review the business impact analysis (BIA).
• B.Perform a risk analysis.
• C.Review the procurement process.
• D.Escalate to senior management.

Comment: *

Name: *

Email: *

Verification: *

Which of the following security mechanisms should be used to prevent disclosures of personally identifiable information (PH) when performing data analytics?

• A.Segmentation
• B.Tokenization
• C.Encryption
• D.Anonymization

Comment: *

Name: *

Email: *

Verification: *