Isaca CISA Quiz 24 Topic 6 Questions 116-120

Question: 1

Which of the following is MOST important to include within a business continuity plan (BCP) so that backup and replication is configured in a way that ensures data availability?

ARecovery time objective (RTO)

BResource management plan

CDisaster recovery location site

DRecovery point objective (RPO)

Show Answer

Question: 2

A CIO has asked an IS to implement several security controls for an organization's IT process and system. The auditor should:

AObtain approval from execute management for the implementation.

BCommunicate the conflict of interest to audit management.

CRefuse due to independence issue

DPerform the assignment and future audits with the due professional care.

Show Answer

Question: 3

An employee transfers from an organization's risk management department to become the lead IS auditor. While in the risk management department, the employee helped developed the key performance indicators (KPIs) now used by the organization. Which of the following would pose the GREATEST threat to the independence of this auditor?

AEvaluating the effectiveness of IT risk management process

BDeveloping KPIs to measure the internal audit team

CRecommending controls to address the IT risks identified by KPIs

DTraining the IT audit team on IT risk management process

Show Answer

Question: 4

Which of the following types of testing would BEST mitigate the risk of a newly implemented system adversely impacting existing systems?

AUnit testing

BUser acceptance testing (UAT)

CSociability testing

DFunctionality testing

Show Answer

Question: 5

An IS audit manager is preparing the starling plan for an audit engagement of a cloud service provider What should be the manager's PRIMARY concern when made aware that a new auditor in the department previous worked for this provider?

AIntegrity

BProfessional conduct

CIndependence

DCompetency

Show Answer

Isaca CISA Quiz:24 Topic:6 Questions:116-120