Isaca CISA Quiz 57 Topic 1 Questions 281-285

Question: 1

To address issues related to privileged users identified in an IS audit, management implemented a security information and event management (SIEM) system. Which type of control is in place?

ADirective

BCorrective

CPreventive

DDetective

Show Answer

Question: 2

Which of the following should be the PRIMARY basis for procedures to dispose of data securely?

AClassification of data

BData retention policy

CEnvironmental regulations

DType of media used for data storage

Show Answer

Question: 3

When developing a business continuity plan (BCP), which of the following should be performed FIRST?

AClassify operations.

BConduct a business impact analysis (BIA)

CDevelop business continuity training.

DEstablish a disaster recovery plan (DRP)

Show Answer

Question: 4

Which of the following is the BEST control to prevent the transfer of files to external parties through instant messaging (IM) applications'?

AFile Transfer Protocol (FTP)

BFile level encryption

CInstant messaging policy

DApplication level firewalls

Show Answer

Question: 5

An IS audit team is evaluating the documentation related to the most recent application user-access review performed by IT and business management. It is determined that the user list was not system-generated. Which of the following: should be the GREATEST concern?

ASource of the user list reviewed

BAvailability of the user list reviewed

CCompleteness of the user list reviewed

DConfidentiality of the user list reviewed

Show Answer

Isaca CISA Quiz:57 Topic:1 Questions:281-285