Which of the following is the MOST effective control for protecting the confidentiality and integrity of data stored unencrypted on virtual machines?

• A.Restrict access to images and snapshots of virtual machines
• B.Monitor access to stored images and snapshots of virtual machines
• C.Limit creation of virtual machine images and snapshots
• D.Review logical access controls on virtual machines regularly

Comment: *

Name: *

Email: *

Verification: *

Software is considered malware based on:

• A.the intent of the creator.
• B.its particular features.
• C.its location.
• D.its compatibility.
• E.None of the choices.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is preparing a plan for audits to be carried out over a specified period. Which of the following activities should the IS auditor perform FIRST?

• A.Determine the audit universe.
• B.Prioritize risks.
• C.Allocate audit resources.
• D.Review prior audit reports.

Comment: *

Name: *

Email: *

Verification: *

Which of the following would MOST likely indicate that a customer data warehouse should remain in-house rather than be outsourced to an offshore operation?

• A.Time zone differences could impede communications between IT teams.
• B.Telecommunications cost could be much higher in the first year.
• C.Privacy laws could prevent cross-border flow of information.
• D.Software development may require more detailed specifications.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor has been asked to perform a post-implementation assessment of a new corporate human resources (HR) system. Which of the following control areas would be OST important to review for the protection of employee information?

• A.Authentication mechanisms
• B.System architecture
• C.Logging capabilities
• D.Data retention practices

Comment: *

Name: *

Email: *

Verification: *