Isaca CISA Quiz 475 Topic 6 Questions 2371-2375

Question: 1

During audit planning, an IS auditor walked through the design of controls related to a new data loss prevention tool. It was noted that the tool will be configured to alert IT management when large files are sent outside of the organization via email. What type of control will be tested?

ADetective

BCorrective

CDirective

DPreventive

Show Answer

Question: 2

The MAIN objective of incident management is to:

Atest for readiness to respond when facing an incident.

Bpermit the incident to go on and follow the trail back to the beginning.

Chave an external computer security incident response team assess damage.

Dkeep the business going while the response is occurring.

Show Answer

Question: 3

An IS auditor is conducting a follow-up internal IS audit ant) determines that several recommendations tram the prior year have not been implemented. Which of the following should be the auditor's FIRST course of action?

ARequest management implement recommendations from the prior year

BContinue the audit and disregard prior audit recommendations

CEvaluate the recommendations in context of the current IT environment

DAdd unimplemented recommendations as findings for the new audit

Show Answer

Question: 4

Which of the following is the BEST evidence of senior management review of IT performance?

AIT lacteal plans

BExecutive committee meeting minutes

CKey IT performance indicators

DBalanced scorecard

Show Answer

Question: 5

An IS auditor is conducting an interim review of an IT project. Which of the following would provide the MOST useful information regarding prefect performance?

AMilestone review

BEarned value analysis

CFunction pant analysis

DCost-benefit analysis

Show Answer

Isaca CISA Quiz:475 Topic:6 Questions:2371-2375