Isaca CISA Quiz 343 Topic 9 Questions 1711-1715

Question: 1

Which of the following methods should be used to purge confidential data from write-once optical media?

ADegauss the media.

BDestroy the media.

CRemove the references to data from the access index.

DWrite over the data with null values.

Show Answer

Question: 2

Which of the following should an IS auditor recommend as MOST critical to an effective performance improvement process for IT services?

AProgress on performance goals is regularly reported to the board.

BThe performance goals are aligned with a commonly accepted framework.

CRoot cause analysis of service issues is used to develop performance goals.

DManagement accepts accountability for achieving performance goals.

Show Answer

Question: 3

In reviewing the IT strategic plan, the IS auditor should consider whether it identifies the:

Amajor IT initiatives.

Blinks to operational tactical plans.

Callocation of IT staff.

Dproject management methodologies used.

Show Answer

Question: 4

During a review of system access, an IS auditor notes that an employee who has recently changed roles within the organization still has previous access rights. The auditor s NEXT step should be to:

Adetermine the reason why access rights have not been revoked

Brecommend a control to automatically update access rights.

Cdirect management to revoke current access rights.

Ddetermine if access rights are in violation of software licenses-

Show Answer

Question: 5

Following an IS audit recommendation, all Telnet and File Transfer Protocol (FTP) connections have been replaced by Secure Socket Shell (SSH) and Secure File Transfer Protocol (SFTP). Which risk treatment approach has the organization adopted?

AAcceptance

BMitigation

CTransfer

DAvoidance

Show Answer

Isaca CISA Quiz:343 Topic:9 Questions:1711-1715