Isaca CISA Quiz 16 Topic 3 Questions 76-80

Question: 1

Which of lite following components of a risk assessment is MOST helpful to management in determining the level of risk mitigation to apply?

ARisk classification

BControl self-assessment (CSA)

CImpact assessment

DRisk identification

Show Answer

Question: 2

An organizations audit charter PRIMARILY

Adescribes the auditor authority to conduct audits

Bformally records the annual and quarterly audit plans

Cdocuments the audit process and reporting standards

Ddefines the auditors code of conduct

Show Answer

Question: 3

An accounting department uses a spreadsheet lo calculate sensitive financial transactions Which of the following is the MOST important control for maintaining the security of data m the spreadsheet?

AThere is a reconciliation process between the spreadsheet and the finance system

BThe spreadsheet is locked down to avoid inadvertent changes

CA separate copy of the spreadsheet is routinely backed up

DAccess to the spreadsheet is given only to those who require access

Show Answer

Question: 4

The MAIN benefit of using an integrated lest facility (ITF) as an online auditing technique is that it enables:

Athe integration of financial and audit tests

Bauditors lo investigate fraudulent transactions

Ca cost-effective approach to application controls audit

Dauditors to test without impacting production data

Show Answer

Question: 5

While auditing a small organization's data classification processes and procedures, an IS auditor noticed that data is often classified at the incorrect level What is the MOST effective way for the organization to improve this situation?

AConduct awareness presentations and seminars tor information classification policies

BUse automatic document classification based on content

CPublish the data classification policy on the corporate web portal

DHave IT security staff conduct targeted training for data owners

Show Answer

Isaca CISA Quiz:16 Topic:3 Questions:76-80