Free Access to ISACA.CISA.v2024-03-31.q980 with Valid Practice Test (Page 19)

Question 86

An IS auditor should be MOST concerned with what aspect of an authorized honeypot?

A.The data collected on attack methods
B.The information offered to outsiders on the honeypot
C.The risk that the honeypot could be used to launch further attacks on the organization's infrastructure
D.The risk that the honeypot would be subject to a distributed denial-of-service attack

Question 87

Which of the following access fights presents the GREATEST risk when granted to a new member of the system development staff?

A.Write access to production program libraries
B.Execute access to development program libraries
C.Write access to development data libraries
D.Execute access to production program libraries

Question 88

A warehouse employee of a retail company has been able to conceal the theft of inventory items by entering adjustments of either damaged or lost stock items to the inventory system Which control would have BEST prevented this type of fraud in a retail environment?

A.Statistical sampling of adjustment transactions
B.Unscheduled audits of lost stock lines
C.Separate authorization for input of transactions
D.An edit check for the validity of the inventory transaction

Question 89

When protecting an organization's IT systems, which of the following is normally the next line of defense
after the network firewall has been compromised?

A.Personal firewall
B.Antivirus programs
C.Intrusion detection system (IDS)
D.Virtual local area network (VLAN) configuration

Question 90

An IS auditor is assessing the results of an organization's post-implementation review of a newly developed information system. Which of the following should be the auditor's MAIN focus?

A.The procurement contract has been closed
B.Benefits realization analysis has been completed
C.The disaster recovery plan (DRP) has been updated
D.Lessons learned have been identified

Question 86

Question 87

Question 88

Question 89

Question 90

Download PDF File