Isaca CISA Quiz 602 Topic 5 Questions 3006-3010

Question: 1

Which of the following should be a concern to an IS auditor reviewing a digital forensic process for a security incident?

AThe media with the original evidence was not write-btocked.

BThe forensic expert used open-source forensic tools.

CThe affected computer was not immediately shut down after the incident.

DAnalysis was performed using an image of the original media.

Show Answer

Question: 2

A project team evaluated vendor responses to a request for proposal (RFP). An IS auditor reviewing the evaluation process would expect the team to have considered each vendor's:

Asecurity policy.

Bacceptance test plan

Cfinancial stability

Ddevelopment methodology.

Show Answer

Question: 3

Which of the following is MOST important for an IS auditor to consider when reviewing documentation for an organization's forensics policy?

AAssigned roles and responsibilities

BNotification processes

CAccess controls

DEvidence preservation

Show Answer

Question: 4

Which of the following should be of GREATEST concern to an IS auditor testing interface controls for an associated bank wire transfer process?

AData is not independently verified by a third party.

BData in the bank's wire transfer system does not reconcile with transferred data.

CCustomer-provided information does not appear to be accurate.

DThe wire transfer was not completed with the most recent secure protocol.

Show Answer

Question: 5

Which of the following is the PRIMARY reason an IS auditor should use an IT-related framework as a basis for scoping and structuring an audit?

AIt provides a foundation to recommend certification of the organization's compliance with the framework.

BIt simplifies audit planning and reduces resource requirements to complete an audit.

CIt demonstrates to management whether legal and regulatory requirements have been met.

DIt helps ensure comprehensiveness of the review and provides guidance on best practices.

Show Answer

Isaca CISA Quiz:602 Topic:5 Questions:3006-3010