Isaca CISA Quiz 505 Topic 5 Questions 2521-2525

Question: 1

When responding to an ongoing denial of service (DoS) attack, an organization's FIRST course of action should be to

Ainvestigate damage

Banalyze the attack path

Cminimize impact

Drestore service

Show Answer

Question: 2

Which of the following is the MOST critical element impacting the success of an information security program?

AMandatory information security awareness training

BSenior management commitment to information security initiatives

CImplementation of industry-standard information security tools

DAdequate budget to support the information security strategy

Show Answer

Question: 3

An IT organization has found that the effectiveness of its Internal processes seems to degrade over time Implementing which of the following would be MOST helpful in addressing this problem?

AA quality control department

BA maturity model framework

CPeriodic employee self-evaluations

DOngoing internal audits

Show Answer

Question: 4

A system was recently promoted to the production environment. An IS auditor has been asked by senior management to update the annual IT audit plan. Which of the following should be the auditor's NEXT course of action?

AUpdate the risk assessment to include the new system.

BContract with a third party to conduct an audit of the new system.

CMaintain the plan with no changes and perform a separate review of the new system

DUpdate the audit plan to include the new system

Show Answer

Question: 5

Which of the following initiatives would be MOST effective to proactively manage the risk of excessive and unauthorized software customizations?

AImplementing stronger access controls

BImplementing quality assurance (QA) reviews

CPerforming change management audits

DFormalizing change management processes

Show Answer

Isaca CISA Quiz:505 Topic:5 Questions:2521-2525