Isaca CISA Quiz 18 Topic 1 Questions 86-90

Question: 1

Which of the following should be reviewed FIRST when assessing the effectiveness of an organization's network security procedures and controls?

AVulnerability remediation

BInventory of authorized devices

CMalware defenses

DData recovery capability

Show Answer

Question: 2

Which of the following provides the BEST evidence that outsourced provider services are being properly managed?

Ainternal performance standards align with corporate strategy

BThe vendor provides historical data to demonstrate its performance

CAdequate action is taken for noncompliance with the service level agreement (SLA)

DThe service level agreement (SLA) includes penalties for non-performance.

Show Answer

Question: 3

Following the implementation of a data toss prevention (DLP) tool, administrators have been overwhelmed with a high number of false positives. Which of the following is the BEST way to address this issue?

AEnable monitoring-only mode to permit further tuning of the solution

BEducate staff about the risks of sharing sensitive information outside the organization.

CAmend policy rules to match approved and unapproved business information pathways.

DEnsure the latest signature files are present and configure regular updates

Show Answer

Question: 4

Which of the following approaches will ensure recovery lime objectives (RTOs) are met for an organization's disaster recovery plan (DRP)?

APerforming a table top test

BPerforming a parallel test

CPerforming a cyber-resilience test

DPerforming a full interruption test

Show Answer

Question: 5

Which of the following is the BEST source of information for an IS auditee of to use when determining whether an organization's information security policy is adequate?

Aindustry benchmarks

BRisk assessment results

Cinformation security program plans

DPenetration test results

Show Answer

Isaca CISA Quiz:18 Topic:1 Questions:86-90