Isaca CISA Quiz 333 Topic 9 Questions 1661-1665

Question: 1

To maintain the confidentiality of information moved between office and home on removable media, which of the following is the MOST effective control?

AMandatory file passwords

BSecurity awareness training

CData encryption

DDigitally signed media

Show Answer

Question: 2

An organization s data retention policy states that all data will be backed up, retained for 10 years, and then destroyed. When conducting an audit of the long-term offsite backup program, an IS auditor should:

Averify that business owners review data before it is destroyed.

Bverify that there is a process to ensure readability and restore capability

Cconfirm that business interruption insurance coverage is in place.

Dreview data classification schemes for appropriate security levels.

Show Answer

Question: 3

Which of the following would BEST assist senior management in evaluating IT performance as well as the alignment between corporate and IT strategic objectives?

AControl self-assessment

BIT project value analysis

CEnterprise architecture

DBalanced scorecard

Show Answer

Question: 4

Which of the following should be of GREATEST concern to an IS auditor conducting an audit of incident response procedures?

AEnd users have not completed security awareness training.

BSenior management is not involved in the incident response process.

CThere is no procedure in place to learn from previous security incidents.

DCritical incident response events are not recorded in a centralized repository.

Show Answer

Question: 5

An IS auditor finds that confidential company data has been inadvertently leaked through social engineering. The MOST effective way to help prevent a recurrence of this issue is to implement:

Apenalties to staff for security policy breaches

Ba third-party intrusion prevention solution

Ca security awareness program.

Ddata loss prevention (DIP) software.

Show Answer

Isaca CISA Quiz:333 Topic:9 Questions:1661-1665