Which of the following IS functions can be performed by the same group or individual while still providing
the proper segregation of duties?

• A.Computer operations and application programming
• B.Database administration and computer operations
• C.Security administration and application programming
• D.Application programming and systems analysis

Comment: *

Name: *

Email: *

Verification: *

Change management procedures are established by IS management to:

• A.control the movement of applications from the test environment to the production environment.
• B.control the interruption of business operations from lack of attention to unresolved problems.
• C.ensure the uninterrupted operation of the business in the event of a disaster.
• D.verify that system changes are properly documented.

Comment: *

Name: *

Email: *

Verification: *

After initial investigation, an IS auditor has reasons to believe that fraud may be present.
The IS auditor should:

• A.expand activities to determine whether an investigation is warranted
• B.report the matter to the audit committee.
• C.report the possibility of fraud to top management and ask how they would like to be proceed.
• D.consult with external legal counsel to determine the course of action to be taken.

Comment: *

Name: *

Email: *

Verification: *

An organizations audit charier PRIMARILY:

• A.describes the auditors' authority to conduct audits.
• B.defines the auditors' code of conduct.
• C.formally records the annual and quarterly audit plans.
• D.documents the audit process and reporting standards.

Comment: *

Name: *

Email: *

Verification: *

An organization is deciding whether to outsource its customer relationship management systems to a provider located in another country. Which of the following should be the PRIMARY influence in the outsourcing decision?

• A.The service provider's disaster recovery plan
• B.Current geopolitical conditions
• C.Time zone differences
• D.Cross-border privacy laws

Comment: *

Name: *

Email: *

Verification: *