Free Access to ISACA.CISA.v2024-12-27.q999 with Valid Practice Test (Page 15)

Question 66

Who is responsible for the overall direction, costs, and timetables for systems-development projects?

A.The project sponsor
B.The project steering committee
C.Senior management
D.The project team leader

Question 67

An organization implemented a cybersecurity policy last year Which of the following is the GREATE ST indicator that the policy may need to be revised?

A.A significant increase in authorized connections to third parties
B.A significant increase in cybersecurity audit findings
C.A significant increase in approved exceptions
D.A significant increase in external attack attempts

Question 68

Which of the following should be seen as one of the most significant factors considered when determining
the frequency of IS audits within your organization?

A.The cost of risk analysis
B.The income generated by the business function
C.Resource allocation strategy
D.The nature and level of risk
E.None of the choices.

Question 69

During an audit of an access control system an IS auditor finds that RFID card readers are not connected via the network to a central server Which of the following is the GREATEST risk associated with this finding?

A.Incidents cannot be investigated without a centralized log file
B.The system is not easily scalable to accommodate a new device
C.Card reader firmware updates cannot be rolled out automatically.
D.Lost or stolen cards cannot be disabled immediately.

Question 70

Which of the following should an IS auditor recommend to BEST enforce alignment of an IT project portfolio with strategic organizational priorities?

A.Define a balanced scorecard (BSC) for measuring performance
B.Consider user satisfaction in the key performance indicators (KPIs)
C.Select projects according to business benefits and risks
D.Modify the yearly process of defining the project portfolio

Question 66

Question 67

Question 68

Question 69

Question 70

Download PDF File