Isaca CISA Quiz 37 Topic 6 Questions 181-185

Question: 1

Which of the following is MOST important for an organization to complete prior to developing its disaster recovery plan (DRP)?

ARisk assessment

BBusiness impact analysis (BIA)

CComprehensive IT inventory

DSupport staff skills gap analysis

Show Answer

Question: 2

Which of the following metrics would be MOST useful to an IS auditor when assessing the resilience of an application programming interface (API)?

ANumber of patches released within a time interval for the API

BNumber of API calls expected versus actually received within a time interval

CNumber of defects logged during development compared to other APIs

DNumber of developers adopting the API for their applications

Show Answer

Question: 3

Which of the following is the GREATEST concern associated with control self-assessments (CSAs)?

AControls may not be assessed objectively.

BThe assessment may not provide sufficient assurance to stakeholders.

CEmployees may have insufficient awareness of controls.

DCommunication between operational management and senior management may not be effective.

Show Answer

Question: 4

The practice of periodic secure code reviews is which type of control?

APreventive

BCompensating

CCorrective

DDetective

Show Answer

Question: 5

A data Breach has occurred due to malware. Which of the following should be the FIRST course of action?

ANotify the cyber insurance company.

BNotify customers of the breach.

CShut down the affected systems.

DQuarantine the impacted systems.

Show Answer

Isaca CISA Quiz:37 Topic:6 Questions:181-185