Isaca CISA Quiz 625 Topic 6 Questions 3121-3125

Question: 1

Which of the following is MOST important to consider when scheduling follow-up audits?

AThe efforts required for independent verification with new auditors

BThe impact if corrective actions are not taken

CThe amount of time the auditee has agreed to spend with auditors

DControls and detection risks related to the observations

Show Answer

Question: 2

Which of the following is the GREATEST advantage of vulnerability scanning over penetration testing?

AThe testing produces a lower number of false positive results

BNetwork bandwidth is utilized more efficiently

CCustom-developed applications can be tested more accurately

DThe testing process can be automated to cover large groups of assets

Show Answer

Question: 3

.Any changes in systems assets, such as replacement of hardware, should be immediately recorded within the assets inventory of which of the following? Choose the BEST answer.

AIT strategic plan

BBusiness continuity plan

CBusiness impact analysis

DIncident response plan

Show Answer

Question: 4

The vice president of human resources has requested an audit to identify payroll overpayments for the previous year. Which would be the BEST audit technique to use in this situation?

A) Test data

AGeneralized audit software

BIntegrated test facility

CEmbedded audit module

Show Answer

Question: 5

Which of the following would be an IS auditor's GREATEST concern when reviewing an organization's security controls for policy compliance?

AEnd users are not required to acknowledge security policy training.

BSecurity policy documents are available on a public domain website.

CThe security policy has not been reviewed within the past year

DSecurity policies are not uniformly applicable across the organization

Show Answer

Isaca CISA Quiz:625 Topic:6 Questions:3121-3125