Isaca CISA Quiz 471 Topic 5 Questions 2351-2355

Question: 1

An IS auditor is reviewing a small organization's business continuity and disaster recovery plans Which of the following findings would pose the GREATEST concern?

APractice drills related to the plans are conducted infrequently

BData backup and storage is not performed every day

CThe plans are not periodically reviewed and updated

DThe organization's hardware is near end-of-the

Show Answer

Question: 2

Which of the following should be of MOST concern to an IS auditor reviewing the information systems acquisition development and implementation process?

AThere is no process tor post-implementation approval of emergency changes.

BData owners are not darned on the use of data conversion tools

CSystem deployment is routinely performed by contractors

DThere is no system documentation available for review

Show Answer

Question: 3

the use of a cloud service provider to obtain additional computing power needed tor software development and testing Which of the following service models is MOST appropriate in tins situation?

ASoftware as a Service (SaaS)

BPlatform as a Service (PaaS)

CDataBase as a Service (DBaaS)

DStorage as a Service (STaaS)

Show Answer

Question: 4

An IT department is unaware of spreadsheets and databases that have been created by business end users to support their respective operations Which of the following is the GREATEST risk in this situation?

AEnd-user solutions may not be protected by IT general controls

BEnd-user developed systems may be inefficient

CEnd-user solutions may not have proper documentation

DEnd-user developed systems may duplicate data

Show Answer

Question: 5

During an informatics security audit of a mid-sized organization an IS auditor notes that the organizations information security policy is not sufficient. What is the auditor's BEST recommendation for the organization?

ADefine roles and responsibilities for regularly updating the policy

BIdentify and close gaps compared to a best-practice framework

CPerform a Benchmark with competitors' polices

DObtain an external consultants support to rewrite the pokey

Show Answer

Isaca CISA Quiz:471 Topic:5 Questions:2351-2355