Isaca CISA Quiz 91 Topic 2 Questions 451-455

Question: 1

Well-written risk assessment guidelines for IS auditing should specify which of the following elements at the least (choose all that apply):

AA maximum length for audit cycles.

BThe timing of risk assessments.

CDocumentation requirements.

DGuidelines for handling special cases.

ENone of the choices.

Show Answer

Question: 2

The ability of the internal IS audit function to achieve desired objectives depends largely on:

Athe training of audit personnel

Bthe background of audit personnel

Cthe independence of audit personnel

Dthe performance of audit personnel

ENone of the choices.

Show Answer

Question: 3

In-house personnel performing IS audits should posses which of the following knowledge and/or skills (choose 2):

Ainformation systems knowledge commensurate with the scope of the IT environment in question

Bsufficient analytical skills to determine root cause of deficiencies in question

Csufficient knowledge on secure system coding

Dsufficient knowledge on secure platform development

Einformation systems knowledge commensurate outside of the scope of the IT environment in question

Show Answer

Question: 4

A comprehensive IS audit policy should include guidelines detailing what involvement the internal audit team should have?

Ain the development and coding of major OS applications.

Bin the acquisition and maintenance of major WEB applications.

Cin the human resource management cycle of the application development project.

Din the development, acquisition, conversion, and testing of major applications.

ENone of the choices.

Show Answer

Question: 5

For application acquisitions with significant impacts, participation of your IS audit team should be encouraged:

Aearly in the due diligence stage.

Bat the testing stage.

Cat the final approval stage.

Dat the budget preparation stage.

ENone of the choices.

Show Answer

Isaca CISA Quiz:91 Topic:2 Questions:451-455