Question: 1
Which of the following should be of MOST concern to an IS auditor evaluating a forensics program?
Question: 2
An IS auditor is assessing an organization's implementation of a virtual network. Which of the following observations should be considered the MOST significant risk?
Question: 3
During the evaluation of a firm's newly established whistleblower system, an auditor notes several findings. Which of the following should be the
auditor's GREATEST concern?
Question: 4
An IS auditor is planning a risk-based audit of the human resources department. The department uses separate systems for its payroll, training
and employee performance review functions. What should the IS auditor do FIRST before identifying the key controls to be tested?
Question: 5
An IS auditor previously worked in an organization s IT department and was involved with the design of the business continuity plan (BCP). The IS
auditor has now been asked to review this same BCP. The auditor should FIRST.