Isaca CISA Quiz 63 Topic 6 Questions 311-315

Question: 1

While planning a review of IT governance, the IS auditor is MOST likely to:

Areview compliance with policies and procedures issued by the board of directors,

Bobtain information about the framework of control adopted by management

Cexamine audit committee minutes for IS-related matters and their control

Dassess whether business process owner responsibilities are consistent across the organization.

Show Answer

Question: 2

An IS auditor is reviewing security controls related to collaboration to unit responsible for intellectual property and patents. Which of the following observations should be of MOST concern to the auditor?

ALogging and monitoring for content filtering is not enabled.

BEmployees can share files with users outside the company through collaboration tools

CThe collaboration tool is hosted and can only be accessed via an Internet browser.

DTraining was not provided to the department that handles intellectual property and patents

Show Answer

Question: 3

When evaluating the ability of a disaster recovery plan (DRP) to enable the recovery of IT processing capabilities, it is MOST important for the IS auditor to verify the plan is:

Acommunicated to department heads,

Bregularly reviewed.

Cstored at an offsite location.

Dperiodically tested.

Show Answer

Question: 4

Several unattended laptops containing sensitive customer data were stolen from personnel offices Which of the following would be an IS auditor's BEST recommendation to protect data in case of recurrence?

AEnhance physical security

BEncrypt the disk drive

CRequire two-factor authentication

DRequire the use of cable locks

Show Answer

Question: 5

Which of the following establishes the role of the internal audit function?

AAudit objectives

BAudit project plan

CAudit charter

DAudit governance

Show Answer

Isaca CISA Quiz:63 Topic:6 Questions:311-315