An IS auditor learns a server administration team regularly applies workarounds to address repeated failures of critical data processing services Which of the following would BEST enable the organization to resolve this issue?

• A.Change management
• B.Problem management
• C.Service level management
• D.Incident management

Comment: *

Name: *

Email: *

Verification: *

Which of the following methods BEST enforces data leakage prevention in a multi-tenant cloud environment?

• A.Monitoring tools are configured to alert in case of downtime
• B.Tenants are required to implement data classification polices
• C.A comprehensive security review is performed every quarter.
• D.Data for different tenants is segregated by database schema

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be MOST effective in detecting the presence of an unauthorized wireless access point on an internal network?

• A.Continuous network monitoring
• B.Periodic network vulnerability assessments
• C.Review of electronic access logs
• D.Physical security reviews

Comment: *

Name: *

Email: *

Verification: *

An organization is establishing a steering committee for the implementation of a new enterprise resource planning (ERP) system that uses Agile project management methodology. What is the MOST important criterion for the makeup of this committee?

• A.Ability to meet the time commitment required
• B.ERP implementation experience
• C.Senior management representation
• D.Agile project management experience

Comment: *

Name: *

Email: *

Verification: *

An IS auditor finds that a number of key patches have not been applied in a timely manner due to re-source constraints. Which of the following is the GREATEST risk to the organization in this situation?

• A.Known security vulnerabilities may not be mitigated.
• B.Systems may not be supported by the vendor.
• C.Different systems may not be compatible.
• D.The systems may not meet user requirements.

Comment: *

Name: *

Email: *

Verification: *