Which of the following is the PRIMARY reason an IS auditor should discuss observations with management before delivering a final report?

• A.Validate the audit observations_
• B.Identify business risks associated with the observations.
• C.Assist the management with control enhancements.
• D.Record the proposed course of corrective action.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor finds that not all employees are aware of the enterprise's information security policy. The IS auditor should conclude that:

• A.this lack of knowledge may lead to unintentional disclosure of sensitive information.
• B.information security is not critical to all functions.
• C.IS audit should provide security training to the employees.
• D.the audit finding will cause management to provide continuous training to staff.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the client organization's responsibility in a Software as a Service (SaaS) environment?

• A.Detecting unauthorized access
• B.Ensuring that users are properly authorized
• C.Ensuring the data is available when needed
• D.Preventing insertion of malicious code

Comment: *

Name: *

Email: *

Verification: *

What is a data validation edit control that matches input data to an occurrence rate? Choose the BEST
answer.

• A.Accuracy check
• B.Completeness check
• C.Reasonableness check
• D.Redundancy check

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important consideration when incorporating data analytics into an audit?

• A.Complexity of the data and related audit process
• B.Ability of the auditor to perform complex analysis
• C.Availability and cost of the tools
• D.Availability and quality of data

Comment: *

Name: *

Email: *

Verification: *