Isaca CISA Quiz 335 Topic 2 Questions 1671-1675

Question: 1

Adopting a service-oriented architecture would MOST likely:

Afacilitate connectivity between partners,.

Bstreamline all internal processes.

Ccompromise application software security

Dinhibit integration with legacy systems.

Show Answer

Question: 2

An organization is choosing key performance indicators (KPIs) for its information security management. Which of the following KPIs would provide stakeholders with the MOST useful information about whether information security risk is being managed?

ATime from initial reporting of an incident to appropriate escalation

BTime from identifying a security threat to implementing a solution

CThe number of security controls implemented

DThe number of security incidents during the past quarter

Show Answer

Question: 3

A previously agreed-upon recommendation was not implemented because the auditee no longer agrees with the original finding. The IS auditor's FIRST course of action should be to:

Aexclude the finding in the follow-up audit report.

Bescalate the disagreement to the audit committee.

Cassess the reason for the disagreement.

Drequire implementation of the original recommendation.

Show Answer

Question: 4

An IS auditor has observed gaps in the data available to the organization for detecting incidents. Which of the following would be the BEST recommendation to improve the organization's security incident response capability?

ADocument procedures for incident escalation.

BDocument procedures for incident classification

CCorrelate security logs collected from multiple sources.

DCentralize alerts and security log information.

Show Answer

Question: 5

When reviewing the effectiveness of data center operations, the IS auditor would FIRST -stablish that system performance:

Ais monitored and reported against agreed service levels.

Breflects the expected usage levels established at implementation.

Cmeets the expected targets specified by the manufacturer.

Dis within generally accepted reliability levels for that system.

Show Answer

Isaca CISA Quiz:335 Topic:2 Questions:1671-1675