Isaca CISA Quiz 625 Topic 6 Questions 3121-3125

Question: 1

Which of the following is MOST important to consider when scheduling follow-up audits?

AThe efforts required for independent verification with new auditors

BThe impact if corrective actions are not taken

CThe amount of time the auditee has agreed to spend with auditors

DControls and detection risks related to the observations

Show Answer

Question: 2

Which of the following is the GREATEST advantage of vulnerability scanning over penetration testing?

AThe testing produces a lower number of false positive results

BNetwork bandwidth is utilized more efficiently

CCustom-developed applications can be tested more accurately

DThe testing process can be automated to cover large groups of assets

Show Answer

Question: 3

.Mitigating the risk and impact of a disaster or business interruption usually takes priority over transference of risk to a third party such as an insurer. True or false?

ATrue

BFalse

Show Answer

Question: 4

Which of the following would represent an acceptable test of an organization s business continuity plan?

AFull test of computer operations at an emergency site

BPaper test involving functional areas

CBenchmarking the plan against similar organizations

DWalk-through of the plan with technology suppliers

Show Answer

Question: 5

In planning a major system development project, function point analysis would assist in:

Adetermining the business functions undertaken by a system or program.

Bestimating the size of a system development task

Cestimating the elapsed time of the project

Danalyzing the functions undertaken by system users as an aid to job redesign

Show Answer

Isaca CISA Quiz:625 Topic:6 Questions:3121-3125