Which of the following should be of GREATEST concern to an IS auditor performing a review of information security controls?

• A.The information security policy has not been approved by the chief audit executive (CAE).
• B.The information security policy does not include mobile device provisions
• C.The information security policy is not frequently reviewed
• D.The information security policy has not been approved by the policy owner

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the GREATEST risk to the effectiveness of application system controls?

• A.Removal of manual processing steps
• B.inadequate procedure manuals
• C.Collusion between employees
• D.Unresolved regulatory compliance issues

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST ensures the quality and integrity of test procedures used in audit analytics?

• A.Decentralizing procedures and Implementing periodic peer review
• B.Developing and communicating test procedure best practices to audit teams
• C.Developing and implementing an audit data repository
• D.Centralizing procedures and implementing change control

Comment: *

Name: *

Email: *

Verification: *

Which of the following controls will MOST effectively detect the presence of bursts of errors in network
transmissions?

• A.Parity check
• B.Echo check
• C.Block sum check
• D.Cyclic redundancy check

Comment: *

Name: *

Email: *

Verification: *

An organization is using symmetric encryption. Which of the following would be a valid reason for moving to asymmetric encryption? Symmetric encryption:

• A.provides authenticity.
• B.is faster than asymmetric encryption.
• C.can cause key management to be difficult.
• D.requires a relatively simple algorithm.

Comment: *

Name: *

Email: *

Verification: *