Isaca CISA Quiz 52 Topic 7 Questions 256-260

Question: 1

Following an IS audit, which of the following types of risk would be MOST critical to communicate to key stakeholders?

AResidual

BAudit

CInherent

DControl

Show Answer

Question: 2

What is the PRIMARY reason for conducting a risk assessment when developing an annual IS audit plan?

ADecide which audit procedures and techniques to use

BDetermine the existence of controls in audit areas

CIdentify and prioritize audit areas

DProvide assurance material items will be covered

Show Answer

Question: 3

Which of the following is the BEST use of a balanced scorecard when evaluating IT performance?

ADetermining compliance with relevant regulatory requirements

BMonitoring alignment of IT with the rest of the organization

CEvaluating implementation of the business strategy

DMonitoring alignment of the IT project portfolio to budget

Show Answer

Question: 4

When auditing the closing stages of a system development project, which of the following should be the MOST important consideration?

ARollback procedures

BControl requirements

CFunctional requirements documentation

DUser acceptance test (UAT) results

Show Answer

Question: 5

An IS auditor is reviewing the perimeter security design of a network Which of the following provides the GREATEST assurance that both incoming and outgoing Internet traffic is controlled?

ALoad balancer

BStateful firewall

CSecurity information and event management (SIEM) system

DIntrusion detection system (IDS)

Show Answer

Isaca CISA Quiz:52 Topic:7 Questions:256-260