Isaca CISA Quiz 416 Topic 6 Questions 2076-2080

Question: 1

Which of the following attacks is BEST detected by an intrusion detection system (IDS)?

ALogic bomb

BSpoofing

CSystem scanning

DSpamming.

Show Answer

Question: 2

Which of the following poses the GREATEST risk to data security and integrity in a cloud environment?

AData is transmitted using hypertext transfer protocol (HTTP).

BData backups are maintained with the cloud provider.

CData is not classified prior to transmission to the cloud provider.

DData regulations are not clearly defined for the cloud provider.

Show Answer

Question: 3

Which of the following is the MOST important consideration when planning a penetration test for a financial management system?

AThe scanning will be cost efficient

BThe scope of the test was approved.

CVulnerability testing will also be performed.

DThe tester does not have any conflicts of interest

Show Answer

Question: 4

The risk that is created if a single sign-on is implemented for all systems is that a/an:

Aauthorized user can bypass the security layers.

Buser tan bypass current access security.

Cuser has equivalent access on all systems.

Dcompromised password gives access to all systems.

Show Answer

Question: 5

An organization using development operations (DevOps) processes has deployed tools to provide automated configuration management functionality. Which of the following is the BEST way to ensure changes to system configuration do not inadvertently introduce security vulnerabilities into production platforms?

AImplement automated scanning as part of the release process.

BImplement logging of developer activity in the production environment.

CImplement tools to inventory newly introduced application components.

DImplement mechanisms for measuring production application performance.

Show Answer

Isaca CISA Quiz:416 Topic:6 Questions:2076-2080