Isaca CISA Quiz 235 Topic 9 Questions 1171-1175

Question: 1

An IS auditor has been asked to participate in project initiation meetings for a critical project. The IS auditor's MAIN concern should be that the:

Acomplexity and risks associated with the project have been analyzed.

Bresources needed throughout the project have been determined.

Cproject deliverables have been identified.

Da contract for external parties involved in the project has been completed.

Show Answer

Question: 2

An IS auditor invited to a development project meeting notes that no project risks have been documented. When the IS auditor raises this issue, the project manager responds that it is too early to identify risks and that, if risks do start impactingthe project, a risk manager will be hired. The appropriate response of the IS auditor would be to:

Astress the importance of spending time at this point in the project to consider and document risks, and to develop contingency plans.

Baccept the project manager's position as the project manager is accountable for the outcome of the project.

Coffer to work with the risk manager when one is appointed.

Dinform the project manager that the IS auditor will conduct a review of the risks at the completion of the requirements definition phase of the project.

Show Answer

Question: 3

While evaluating software development practices in an organization, an IS auditor notes that the quality assurance (QA) function reports to project management. The MOST important concern for an IS auditor is the:

Aeffectiveness of the QA function because it should interact between project management and user management

Befficiency of the QA function because it should interact with the project implementation team.

Ceffectiveness of the project manager because the project manager should interact with the QA function.

Defficiency of the project manager because the QA function will need to communicate with the project implementation team.

Show Answer

Question: 4

When reviewing a project where quality is a major concern, an IS auditor should use the project management triangle to explain that:

Aincreases in quality can be achieved, even if resource allocation is decreased.

Bincreases in quality are only achieved if resource allocation is increased.

Cdecreases in delivery time can be achieved, even if resource allocation is decreased.

Ddecreases in delivery time can only be achieved if quality is decreased.

Show Answer

Question: 5

An IS auditor is assigned to audit a software development project which is more than 80 percent complete, but has already overrun time by 10 percent and costs by 25 percent. Which of the following actions should the IS auditor take?

AReport that the organization does not have effective project management.

BRecommend the project manager be changed.

CReview the IT governance structure.

DReview the conduct of the project and the business case.

Show Answer

Isaca CISA Quiz:235 Topic:9 Questions:1171-1175