Which of the following is MOST important for an IS auditor to determine when evaluating a database for privacy-related risks?

• A.Whether the integrity of the data dictionary is maintained
• B.Whether copies of production data are masked
• C.Whether data import and export procedures are approved
• D.Whether all database tables are normalized

Comment: *

Name: *

Email: *

Verification: *

As part of the architecture of virtualized environments, in a bare metal or native visualization the hypervisor runs without:

• A.a host operating system.
• B.a guest operating system.
• C.any applications on the guest operating system.
• D.any applications on the host operating system.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important to have in place to build consensus among key stakeholders on the cost-effectiveness of IT?

• A.IT project governance and management
• B.Standardized enterprise architecture (EA)
• C.A uniform IT chargeback process
• D.IT performance monitoring and reporting

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is assessing the adequacy of management's remediation action plan. Which of the following should be the MOST important consideration?

• A.Plan approval by the audit committee
• B.Impacts on future audit work
• C.Criticality of audit findings
• D.Potential cost savings

Comment: *

Name: *

Email: *

Verification: *

In a small organization, developers may release emergency changes directly to production. Which of the following will BEST control the risk in this situation?

• A.Approve and document the change the next business day
• B.Limit developer access to production to a specific timeframe
• C.Obtain secondary approval before releasing to production
• D.Disable the compiler option in the production machine

Comment: *

Name: *

Email: *

Verification: *