Isaca CISA Quiz 450 Topic 5 Questions 2246-2250

Question: 1

During a review of an organization's network threat response process. The IS auditor noticed that the majority of alerts were closed without resolution. Management responded that those alerts were unworkable due to lack of actionable intelligence, and therefore the support team is allowed to close them. What is the best way for the auditor to address the situation?

AFurther review closed unactioned alerts to identify mishandling of threats

BOmit the finding from the report as this practice is in compliance with the current policy

CRecommend that management enhance the policy and improve threat awareness training

DReopen unactioned alerts and report to the audit committee

Show Answer

Question: 2

An IS auditor determines that an online retailer processing credit card information does not have a data classification process. The auditor's NEXT step should be

ARecommend the implementation of data loss prevention (DLP) tools.

BDetermine existing controls around sensitive data

CInquire if there have been any data loss incidents

DRecommend encryption of all sensitive data as rest

Show Answer

Question: 3

Which of the following should an IS auditor verify when auditing the effectiveness of virus protection?

ACurrency of software patch application

BFrequency of external Internet access

CFrequency of IDS log reviews

DSchedule for migration to production

Show Answer

Question: 4

The GREATEST risk of database renormalization is:

ADecreased performance

BLoss of database integrity

CIncorrect metadata

DLoss of data confidentiality

Show Answer

Question: 5

In assessing the priority given to systems covered in an organization's business continuity plan (BCP), an IS auditor should FIRST:

AReview the backup and restore process

BVerify the criteria for disaster recovery site selection

CValidate the recovery time objectives and recovery point objectives

DReview results of previous business continuity plan (BCP) tests

Show Answer

Isaca CISA Quiz:450 Topic:5 Questions:2246-2250