Isaca CISA Quiz 72 Topic 3 Questions 356-360

Question: 1

The application systems quality assurance (QA) function should:

Adesign and develop quality applications by employing system development methodology.
B assist programmers in designing and developing applications.

Censure adherence of programs to standards

Dcompare programs to approved system changes

Show Answer

Question: 2

What a the BEST control to address SOL injection vulnerabilities?

ASecure Sockets Layer (SSL) encryption

BInput validation

CDigital signatures

DUnicode translation

Show Answer

Question: 3

Data anonymization helps to prevent which types of attacks in a big data environment?

ADenial of service (DoS)

BMan-in-the-middle

CCorrelation

DSpoofing

Show Answer

Question: 4

When reviewing past results of a recurring annual audit, an IS auditor notes that findings may not have been reported and independence may not have been maintained Which of the following is the auditor's BEST course of action?

AInform audit management

BRe-perform past audits to ensure independence

CInform senior management

DReevaluate internal controls

Show Answer

Question: 5

During the implementation of an enterprise resource planning (ERP) system, an IS auditor is reviewing the results of user acceptance testing (UAT). The auditor's PRIMARY focus should be to determine if:

Athe business process owner has signed off on the results.

Bsystem integration testing was performed.

Call errors found in the testing process have been corrected.

Dapplication interfaces have been satisfactorily tested.

Show Answer

Isaca CISA Quiz:72 Topic:3 Questions:356-360