Isaca CISA Quiz 84 Topic 5 Questions 416-420

Question: 1

During a post-implementation review, an IS auditor learns that while benefits were realized according to the business case, complications during implementation added to the cost of the solution. Which of the following is the auditor's BEST course of action?

ADetermine if project deliverables were provided on time

BVerify that lessons learned were documented for future projects.

CEnsure costs related to the complications were subtracted from realized benefits.

DDesign controls that will prevent future added costs.

Show Answer

Question: 2

Which of the following is the GREATEST risk associated with data conversion and migration during implementation of a new application?

ALack of data transformation rules

BInadequate audit trails and logging

CAbsence of segregation of duties

DObsolescence and data backup compatibility

Show Answer

Question: 3

An IS auditor discovers that validation controls in a web application have been moved from the server side into the browser to boost performance. This would MOST likely increase the risk of a successful attack by:

Aphishing.

Bbuffer overflow.

Cdenial of service (DoS).

Dstructured query language (SQL) injection.

Show Answer

Question: 4

Which of the following is MOST important when duties in a small organization cannot be appropriately segregated?

AVariance reporting

BAudit trail

CException reporting

Dindependent reviews

Show Answer

Question: 5

Which of the following techniques is MOST appropriate for verifying application program controls?

AStatistical sampling

BCode review

CUse of test data

DObservation of data entry

Show Answer

Isaca CISA Quiz:84 Topic:5 Questions:416-420