Isaca CISA Quiz 561 Topic 9 Questions 2801-2805

Question: 1

Which of the following observations should be of GREATEST concern to an IS auditor reviewing a large organization's IT steering committee?

AResource and priority conflict resolution has been delegated to the project management office

BThe committee does not include any current system administrators.

CBusiness executives are not represented on the committee.

DThe committee has not formally approved the enterprise's IT architecture.

Show Answer

Question: 2

Which of the following should be an IS auditor's BEST recommendation to prevent installation of unlicensed software on employees' company-provided devices?

AEnforce audit logging of software installation activities.

BRemove unlicensed software from end-user devices.

CImplement software blacklisting.

DRestrict software installation authority to administrative users only.

Show Answer

Question: 3

Which of the following should be done FIRST to effectively define the IT audit universe for an entity with multiple business lines?

AIdentify aggregate residual IT risk for each business line.

BObtain a complete listing of the entity's IT processes

CObtain a complete listing of assets fundamental to the entity's businesses.

DIdentify key control objectives for each business line's core processes

Show Answer

Question: 4

While conducting a review of project plans related to a new software development, an IS auditor finds the project initiation document (PID) is incomplete. What is the BEST way for the auditor to proceed?

AMeet with the project sponsor to discuss the incomplete document.

BPrepare a finding for the audit report.

CInform audit management of possible risks associated with the deficiency.

DEscalate to the project steering committee.

Show Answer

Question: 5

During a review of the IT strategic plan, an IS auditor finds several IT initiatives focused on delivering new systems and technology are not aligned with the organization's strategy. Which of the following would be the IS auditor's BEST recommendation?

AModify IT initiatives that do not map to business strategies.

BReassess IT initiatives that do not map to business strategies.

CUtilize a balanced scorecard to align IT initiatives to business strategies.

DReassess the return on investment (ROI) for the IT initiatives.

Show Answer

Isaca CISA Quiz:561 Topic:9 Questions:2801-2805