Although BCP and DRP are often implemented and tested by middle management and end users, the ultimate responsibility and accountability for the plans remain with executive management, such as the
_______________________. (fill-in-the-blank)

• A.Security administrator
• B.Systems auditor
• C.Board of directors
• D.Financial auditor

Comment: *

Name: *

Email: *

Verification: *

During a routine internal software licensing review, an IS auditor discovers instances where employees shared license keys to critical pieces of business software. Which of the following would be the auditor's BEST course of action?

• A.Validate user need for shared software licenses
• B.Verify whether the licensing agreement allows shared use
• C.Recommend the purchase of additional software license keys
• D.Recommend the utilization of software licensing monitoring tools

Comment: *

Name: *

Email: *

Verification: *

A disaster recovery plan for an organization should:

• A.reduce the length of the recovery time and the cost of recovery.
• B.increase the length of the recovery time and the cost of recovery.
• C.reduce the duration of the recovery time and increase the cost of recovery.
• D.affect neither the recovery time nor the cost of recovery.

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be the MOST effective audit technique for identifying segregation of duties violations in a new enterprise resource planning (ERP) implementation?

• A.Reviewing a report of security rights in the system
• B.Reviewing the complexities of authorization objects
• C.Building a program to identify conflicts in authorization
• D.Examining recent access rights violation cases

Comment: *

Name: *

Email: *

Verification: *

A financial institution is launching a mobile banking service utilizing multi-factor authentication. This access control is an example of which of the following?

• A.Directive control
• B.Detective control
• C.Corrective control
• D.Preventive control

Comment: *

Name: *

Email: *

Verification: *