Isaca CISA Quiz 6 Topic 3 Questions 26-30

Question: 1

An IS auditor is reviewing the maturity of a large organizations IT governance. Which of the following BEST demonstrates that IT governance has been effectively implemented?

AThe board approves necessary resources for IT security reviews.

BThe board reviews strategic IT hey performance Indicators (KPIs).

CThe board monitors adherence to the organizations information security policy.

DThe board reviews compliance with legal and regulatory requirements

Show Answer

Question: 2

Which of the following must be in place before an IS auditor initiates audi Mow-up activities?

AAvailable resources for the activities Included in the action plan

BA management response in the final report with a committed implementation date

Cdate A heal map within the gaps and recommendations displayed In terms of risk

DSupporting evidence for the flaps and recommendations mentioned in the audit report

Show Answer

Question: 3

Which of the following are BIST suited for continuous auditing?

ATotal number of hours budgeted to security

BEffectiveness of the security program

CTotal number of false positives

DSecurity incidents vs. industry benchmarks

Show Answer

Question: 4

A project team has decided to switch to an agile approach to develop a replacement tor an existing business application Which of the following should an IS auditor do FIRST to the effectiveness of the project audit?

AIdentity and assess existing agile process controls.

Bcompare the agile process with previous methodology

CInterview business process owners to compile a list of business requirements

DUnderstand the specific agile methodology fiat wil be followed

Show Answer

Question: 5

When reviewing an organization's IT governance processes, which of the following provides the BEST Indication tut Information security expectations are being met at all levels?

AApproval of the security program by senior management

BAchievement of established security metrics

CImplementation of a comprehensive security awareness program

DUtilization of an internationally recognised security standard

Show Answer

Isaca CISA Quiz:6 Topic:3 Questions:26-30