Isaca CISA Quiz 442 Topic 2 Questions 2206-2210

Question: 1

Which of the following provides the MOST comprehensive description of Its role in an organization?

AIT job description

BIT organizational chart

CIT charter

DIT project portfolio

Show Answer

Question: 2

An IS auditor is assessing an organization's data loss prevention (DLP) solution for protecting intellectual property from insider theft. Which of the following would the auditor consider MOST important for effective data protection?

ACreation of DLP policies and procedures

BEncryption of data copied to flash drives

CEmployee training on information handling

DIdentification and classification of sensitive data

Show Answer

Question: 3

Software quality assurance (QA) reviews are planned as part of system development. At which stage in the development process should the first review be initiated?

AImmediately prior to user acceptance testing

BDuring the feasibility study

CAt pre-implementation planning

DAs a part of the user requirements definition

Show Answer

Question: 4

An IS auditor finds that the process for removing access for terminated employee is not documented. What is the MOST significant risk from this observation?

AAccess rights may not be removed in a timely manner

BUnauthorized access cannot be identified

CProcedures may not align with the practices

DHR records may not match system access

Show Answer

Question: 5

Which of the following should be an IS auditor's PRIMARY focus when developing a risk-banned IS audit program?

ABusiness processes

BIT strategic plans

CPortfolio management

DBusiness plans

Show Answer

Isaca CISA Quiz:442 Topic:2 Questions:2206-2210