Isaca CISA Quiz 625 Topic 6 Questions 3121-3125

Question: 1

Which of the following is MOST important to consider when scheduling follow-up audits?

AThe efforts required for independent verification with new auditors

BThe impact if corrective actions are not taken

CThe amount of time the auditee has agreed to spend with auditors

DControls and detection risks related to the observations

Show Answer

Question: 2

Which of the following is the GREATEST advantage of vulnerability scanning over penetration testing?

AThe testing produces a lower number of false positive results

BNetwork bandwidth is utilized more efficiently

CCustom-developed applications can be tested more accurately

DThe testing process can be automated to cover large groups of assets

Show Answer

Question: 3

Which of the following intrusion detection systems (IDSs) monitors the general patterns of activity and traffic on a network and creates a database?

ASignature-based

BNeural networks-based

CStatistical-based

DHost-based

Show Answer

Question: 4

As part of the business continuity planning process, which of the following should be identified FIRST in the business impact analysis?

AOrganizational risks, such as single point-of-failure and infrastructure risk

BThreats to critical business processes

CCritical business processes for ascertaining the priority for recovery

DResources required for resumption of business

Show Answer

Question: 5

Which of the following situations would increase the likelihood of fraud?

AApplication programmers are implementing changes to production programs.

BApplication programmers are implementing changes to test programs.

COperations support staff are implementing changes to batch schedules.

DDatabase administrators are implementing changes to data structures.

Show Answer

Isaca CISA Quiz:625 Topic:6 Questions:3121-3125