When auditing IT organizational structure, which of the following findings presents the GREATEST risk to an organization?
Correct Answer: C
Question 52
Why does an IS auditor review an organization chart?
Correct Answer: C
Section: Protection of Information Assets Explanation: The primary reason an IS auditor reviews an organization chart is to better understand the responsibilities and authority of individuals.
Question 53
What can ISPs use to implement inbound traffic filtering as a control to identify IP packets transmitted from unauthorized sources?
Correct Answer: C
Explanation/Reference: Explanation: ISPs can use access control lists to implement inbound traffic filtering as a control to identify IP packets transmitted from unauthorized sources.
Question 54
During the review of a system disruption incident, an IS auditor notes that IT support staff were put in a position to make decisions beyond their level of authority. Which of the following is the BEST recommendation to help prevent this situation in the future?
Correct Answer: A
Explanation The best recommendation to help prevent the situation where IT support staff were put in a position to make decisions beyond their level of authority during the review of a system disruption incident is to introduce escalation protocols. Escalation protocols are policies and procedures that define who should be notified, involved, or consulted when an incident occurs, how the communication and handover should take place, and what criteria or triggers should be used to escalate the incident to a higher level of authority or expertise2. Escalation protocols help to ensure that: Incidents are handled by the appropriate staff with the required skills, knowledge, and experience Incidents are resolved in a timely and effective manner Incidents are escalated to senior management or specialized teams when necessary Incidents are documented and reported accurately and transparently Incidents are analyzed and learned from to prevent recurrence or mitigate impact Therefore, by introducing escalation protocols, an organization can improve its incident management process and avoid putting IT support staff in a position to make decisions beyond their level of authority. References: Escalation policies for effective incident management, Section 1: What is incident escalation?
Question 55
Which of the following is the GREATEST concern when an organization's backup facility is at a warm site?
Correct Answer: A
A warm site has the basic infrastructure facilities implemented, such as power, air conditioning and networking, but is normally lacking computing equipment. Therefore, the availability of hardware becomes a primary concern.
