Which of the following BEST indicates that the effectiveness of an organization's security awareness program has improved?

• A.A decrease in the number of information security audit findings
• B.An increase in the number of staff who complete awareness training
• C.An increase in the number of phishing emails reported by employees
• D.A decrease in the number of malware outbreaks

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST likely to result from compliance testing?

• A.Discovery of controls that have not been applied
• B.Confirmation of data with outside sources
• C.Comparison of data with physical counts
• D.Identification of errors due to processing mistakes

Comment: *

Name: *

Email: *

Verification: *

During a disaster recovery test, an IS auditor observes that the performance of the disaster recovery site's
server is slow. To find the root cause of this, the IS auditor should FIRST review the:

• A.event error log generated at the disaster recovery site.
• B.disaster recovery test plan.
• C.disaster recovery plan (DRP).
• D.configurations and alignment of the primary and disaster recovery sites.

Comment: *

Name: *

Email: *

Verification: *

Receiving an EDI transaction and passing it through the communication's interface stage usually requires:

• A.translating and unbundling transactions.
• B.routing verification procedures.
• C.passing data to the appropriate application system.
• D.creating a point of receipt audit log.

Comment: *

Name: *

Email: *

Verification: *

The MOST efficient way to confirm that an ERP system being implemented satisfies business expectations is to utilize which of the following types of testing?

• A.Alpha
• B.Sociability
• C.Pilot
• D.Parallel

Comment: *

Name: *

Email: *

Verification: *