Isaca CISA Quiz 360 Topic 7 Questions 1796-1800

Question: 1

These members of an emergency incident response team should be:

Arestricted to IT personnel

Bappointed by the CISO

Cselected from multiple departments

Dassigned at the time of each incident

Show Answer

Question: 2

An IS auditor is involved in the user testing phase of a development project. The developers wish to use a copy of a peak volume transaction file from the production process to should that the development can cope with the required volume What is the auditor s PRIMARY concern?

AUsers may not wish for production data to be made available for testing.

BAll functionality of the new process may not be tested.

CSensitive production data may be read by unauthorized persons.

DThe error-handling and credibility checks may not be fully proven

Show Answer

Question: 3

An effective implementation of security roles and responsibilities is BEST evidenced across an enterprise when:

Areviews and updates of policies are regularly performed

Bpokies are signed off by users.

Coperational activities are aligned with policies.

Dpolicies are rolled out and disseminated

Show Answer

Question: 4

The MAIN reason an organization's incident management procedures should include a post-incident review is to:

Aenable better reporting for executives and the audit committee

Bimprove processes by learning from identified weaknesses

Ctake appropriate action when procedures are not followed

Densure evidence is collected tor possible post-event litigation.

Show Answer

Question: 5

An organization uses electronic funds transfer (EFT) to pay its vendors. Which of the following should be an IS auditor s MAIN focus while reviewing controls in the accounts payable Application?

AAmount of disbursements

BVolume of transactions

CChanges to the vendor master file

DFrequency of transactions

Show Answer

Isaca CISA Quiz:360 Topic:7 Questions:1796-1800