Isaca CISA Quiz 327 Topic 7 Questions 1631-1635

Question: 1

An IS auditor determines that a business continuity plan has not been reviewed and approved by management. Which of the following is the MOST significant risk associated with this situation?

AContinuity planning may be subject to resource constraints.

BThe plan may not be aligned with industry best practice.

CCritical business processes may not be addressed adequate.

DThe plan has not been reviewed by risk management

Show Answer

Question: 2

A CIO has asked an IS auditor to implement several security controls for an organization s IT processes and systems. The auditor should:

Aobtain approval from executive management for the implementation

Bcommunicate the conflict of interest to audit management

Cperform the assignment and future audits with due professional care.

Drefuse due to independence issues.

Show Answer

Question: 3

To effectively classify data, which of the following MUST be determined?

AData controls

BData ownership

CData users

DData volume

Show Answer

Question: 4

An audit team has a completed schedule approved by the audit committee. After starting some of the scheduled audits, executive management asked the team to immediately audit an additional process. There are not enough resources available to add the additional audit to the schedule. Which of the following is the BEST course of action?

ARevise the scope of scheduled audits.

BPropose a revised audit schedule.

CApprove overtime work to ensure the audit is completed.

DConsider scheduling the audit for the next period.

Show Answer

Question: 5

Which of the following BEST helps to identify errors during data transfer?

ADecrease the size of data transfer packets.

BTest the integrity of the data transfer.

CReview and verify the data transfer sequence numbers.

DEnable a logging process for data transfer.

Show Answer

Isaca CISA Quiz:327 Topic:7 Questions:1631-1635