For application acquisitions with significant impacts, participation of your IS audit team should be
encouraged:

• A.early in the due diligence stage.
• B.at the testing stage.
• C.at the final approval stage.
• D.at the budget preparation stage.
• E.None of the choices.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor reviewing the physical access section of a security plan for a data center should expect to find that:

• A.entry points requiring different rules of access have been identified.
• B.the access devices are connected to a remote management system.
• C.access to environmental controls is well labeled.
• D.the data center has mantraps on entrances and exits.

Comment: *

Name: *

Email: *

Verification: *

An IS auditor is assessing the results of an organization's post-implementation review of a newly developed information system. Which of the following should be the auditor's MAIN focus?

• A.The procurement contract has been closed.
• B.Lessons learned have been identified.
• C.The disaster recovery plan has been updated.
• D.Benefits realization analysis has been completed.

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be BEST prevented by a raised floor in the computer machine room?

• A.Damage of wires around computers and servers
• B.A power failure from static electricity
• C.Shocks from earthquakes
• D.Water flood damage.

Comment: *

Name: *

Email: *

Verification: *

A data center has a badge-entry system. Which of the following is MOST important to protect the computing assets in the center?

• A.Badge readers are installed in locations where tampering would be noticed
• B.The computer that controls the badge system is backed up frequently
• C.A process for promptly deactivating lost or stolen badges exists
• D.All badge entry attempts are logged

Comment: *

Name: *

Email: *

Verification: *