What is the PRIMARY reason for hardening new devices before introducing into a corporate network?

• A.To comply with organizational rules
• B.To ease maintenance of devices
• C.To reduce exposure to attacks
• D.To avoid software licensing conflicts

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST indicator that an application system's agreed-upon level of service has been met?

• A.Security Incident reports
• B.Transaction response time
• C.CPU utilization reports
• D.Bandwidth usage logs

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important function to be performed by IS management when a service has been outsourced?

• A.Ensuring that invoices are paid to the provider
• B.Participating in systems design with the provider
• C.Renegotiating the provider's fees
• D.Monitoring the outsourcing provider's performance

Comment: *

Name: *

Email: *

Verification: *

Which of the following should be the PRIMARY concern of an IS auditor during a review of an external IT service level agreement (SLA) for computer operations?

• A.Lack of software escrow provisions
• B.Changes in services are not tracked
• C.No employee succession plan
• D.Vendor has exclusive control of IT resources

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important action to ensure timely detection and triage for potential security incidents within an organization?

• A.Engage a third-party service provider for incident response and forensic investigation.
• B.Install an agent to forward logs to a security information and event management (SIEM) solution for real-time analysis.
• C.Train help desk staff to identify potential symptoms of security incidents when users initiate service tickets.
• D.Ensure all network components and endpoints are hardened.

Comment: *

Name: *

Email: *

Verification: *