Isaca CISA Quiz 511 Topic 2 Questions 2551-2555

Question: 1

What would be an IS auditor's BEST course of action when a critical issue outside the audit scope is discovered on an employee workstation?

ARecord the observation in the workpapers.

BTake no action as this issue is outside the audit scope.

CInclude the finding with recommendations in the final report.

DExpand the audit scope to include desktop audits.

Show Answer

Question: 2

An external IS auditor is reviewing the continuous monitoring system for a large bank and notes several potential issues. Which of the following would present the GREATEST concern regarding the reliability of the monitoring system?

AThe measurement method is periodically varied.

BThe alert threshold is updated periodically.

CThe system results are not regularly reviewed by management.

DThe monitoring system was configured by internal auditors.

Show Answer

Question: 3

Which of the following is the BEST justification for an organization's decision to go with active-active application clustering instead of active-passive?

AThe relevant application is not set up to be cluster-aware.

BHigh availability is a priority.

CLoad balancing is a priority.

DIncreased demand on network latency is a concern.

Show Answer

Question: 4

Which of the following is MOST critical to the success of an information security program?

AUser accountability for information security

BIntegration business and information security

CAlignment information security with IT objectives

DManagement's commitment to information security

Show Answer

Question: 5

When continuous monitoring systems are being implemented, an IS auditor should FIRST identify

Aapplications that provide the highest financial risk

Bhigh-risk areas within the organization

Cthe controls on which to focus

Dthe location and format of output files.

Show Answer

Isaca CISA Quiz:511 Topic:2 Questions:2551-2555