Isaca CISA Quiz 22 Topic 9 Questions 106-110

Question: 1

When auditing the security architecture of an e-commerce environment, an IS auditor should FIRST review the:

Acriteria used for selecting the firewall.

Blocation of the firewall within the network.

Cconfiguration of the firewall.

Dalternate firewall arrangements.

Show Answer

Question: 2

A new regulation requires organizations to report significant security incidents to the regulator within 24 hours of identification. Which of the following is the IS auditor s BEST recommendation to facilitate compliance with the regulation?

AEnhance the alert functionality of the intrusion detection system (IDS).

BEstablish key performance indicators (KPIs) for timely identification of security incidents.

CInclude the requirement in the incident management response plan.

DEngage an external security incident response expert for incident handling.

Show Answer

Question: 3

An organization has recently acquired and implemented intelligent-agent software for granting loans to customers. During the post implementation review, which of the following would be the KEY procedure for the IS auditor to perform?

AReview system documentation to ensure completeness.

BEnsure that a detection system designed to verify transaction accuracy is included.

CReview input and output control reports to verify the accuracy of the system decisions.

DReview signed approvals to ensure responsibilities for decisions of the system are welldefined.

Show Answer

Question: 4

When evaluating whether the expected benefits of a project have been achieved, it is MOST important for an IS auditor to review:

Apost-implementation issues.

Bquality assurance results.

Cthe project schedule.

Dthe business case.

Show Answer

Question: 5

When planning an audit to assess application controls of a cloud-based system, it is MOST important for the IS auditor to understand the:

Apolicies and procedures of the business area being audited.

Bbusiness process supported by the system.

Cavailability reports associated with the cloud-based system.

Darchitecture and cloud environment of the system.

Show Answer

Isaca CISA Quiz:22 Topic:9 Questions:106-110