EMT Practice Test

1. Question Content...


Question List

Question1: Which of the following is the BEST way to control the concurrent use of licensed software?

Question2: When conducting a post implementation review which of the following is the BEST way to determine whether the value from an IT project has been achieved?

Question3: Which of the following is MOST likely to result from compliance testing?

Question4: IS audit is asked 10 explain how local area network (LAN) servers can contribute to a rapid dissemination of viruses. The IS auditor's BEST response is that:

Question5: Which of the following should be an IS auditor's PRIMARY consideration when evaluating the development and design of a privacy program?

Question6: Which of the following BEST enables timely detection of changes in the IT environment to support informed decision making by management?

Question7: A database administrator (DBA) extracts a user listing for an auditor as testing evidence. Which of the following will provide the GREATEST assurance that the user listing is reliable'

Question8: Which of the following is the MOST significant driver of efficient handling of information security incidents?

Question9: Documentation of workaround processes to keep a business function operational during recovery of IT systems is a core part of a:

Question10: Since data storage of a critical business application is on a redundant array of inexpensive disks (RAID).
Backup are not considered essential. The IS auditor should recommend proper backup because RAID:

Question11: Which of the following would be the GREATEST concern to an IS auditor reviewing an IT outsourcing arrangement?

Question12: To create a digital signature in a message using asymmetric encryption, it is necessary to:

Question13: What is the MOST important business concern when an organization is about to migrate a mission-critical application to a virtual environment?

Question14: What is the GREASTEST concern for an IS auditory reviewing contracts for licensed software that executes a critical business process?

Question15: Which of the following is a reason for implementing a decentralized IT governance model?

Question16: Which of the following access control situations represents the MOST serious control weakness?

Question17: Which of the following is the BEST way to facilitate proper follow-up for audit finding?

Question18: Which of the following are BEST suited for continuous auditing?

Question19: Which of the following protects against the impact of temporary and rapid decreases or increases in electricity?

Question20: An auditor is creating an audit program in which the objective is to establish the adequacy of personal data privacy controls in a payroll process. Which of the following would be MOST important to include?

Question21: Which of the following findings would have the GREATEST impact on the objective of a business intelligence system?

Question22: During a security audit, which of the following is MOST important to review to ensure data confidentiality is managed?

Question23: During the planning stage of compliance audit, an IS auditor discovers that the bank's inventory of compliance requirements does not include recent regulatory changes related to managing data risk. What would the auditor do FIRST?

Question24: Which of the following will enable a customer to authenticate an online Internet vendor?

Question25: Which of the following should be performed immediately after a computet security incident has been detected and analyzed by an incident response team?

Question26: Which of the following controls will MOST effectively detect inconsistent records resulting from the lack of referential integrity in a database management system?

Question27: maturity model is useful in the assessment of IT service management because it:

Question28: An IS auditor finds that confidential company data has been inadvertently leaked through social engineering.
The MOST effective way to help prevent a recurrence of this issue is to implement:

Question29: Which of the following is the BCST way to determine the effectiveness of a recently installed intrusion detection system (IDS)?

Question30: The operations team of an organization has reported an IS security attack. Which of the following should be the NEXT step for the security incident response team?

Question31: Which of the following would be MOST critical for an IS auditor to look for when evaluating fire precautions in a manned data center located in the upper floor of a multi-story building?

Question32: An IS auditor performing an audit of backup procedures observes that backup tapes are picked up weekly and stored offsite at a deed party hosting faculty. Which of the following recommendations would be the BEST way to maintain data integrity during transport?

Question33: During business process reengineering (BPR) of a bank's teller activities, an IS auditor should evaluate:

Question34: Which of the following would be MOST helpful in ensuring security procedures are followed by employees in a multinational organization?

Question35: An IS auditor observes that an organization s critical IT systems nave experienced several failures throughout the year. Which of the following is the BEST recommendation?

Question36: An organization is in the process of deciding whether to allow a bring your own device (BYOD) program. If approved, which of the following should be the FIRST control required before implementation?

Question37: An IS auditor is conducting a pre-implementation review to determine a new system's production readiness.
The auditor's PRIMARY concern should be whether:

Question38: When introducing a maturity model to the IT management process, it is BEST to align the maturity level to a point that reflects which of the following?

Question39: Which of the following should the IS auditor use to BEST determine whether a project has met its business objectives?

Question40: Which of the following is a prerequisite to help ensure that IS hardware and software support the delivery of mission-critical functions?

Question41: Which of the following would be an auditor's GREATEST concern when reviewing data inputs from spreadsheets into the core finance system?

Question42: Which procedure provides the GREATEST assurance that corrective action to an audit report has been taken?

Question43: On a daily basis, an in-house development team moves duplicate copies of production data containing personally identifiable information (Pll) to the test environment Which of the following is the BEST way to mitigate the privacy risk involved?

Question44: When auditing a quality assurance plan, an IS auditor should be MOST concerned if the:

Question45: An organization is developing data classification standards and has asked internal audit for advice on aligning the standards with best practices. Internal audit would MOST likely recommend the standards should be:

Question46: An organization uses electronic funds transfer (EFT) to pay its vendors. Which of the following should be an IS auditor s MAIN focus while reviewing controls in the accounts payable Application?

Question47: An IS auditor notes that help desk personnel are required to make critical decisions during major service disruptions. Which of the following is the auditor's BEST recommendation to address this situation?

Question48: An organization has installed blade server technology in its data server. To determine whether higher cooling demands are maintained, which of the following should the IS auditor review?

Question49: An employee loses a mobile device resulting in loss of sensitive corporate data. Which of the following would have BEST prevented data leakage?

Question50: To effectively classify data, which of the following MUST be determined?

Question51: One advantage of monetary unit sampling is the fact that:

Question52: An organization has established hiring policies and procedures designed specifically to ensure network administrators are well qualified. Which type of control is in place?

Question53: Which of the following should be of concern to an IS auditor performing a software audit on virtual machines?

Question54: When engaging services from external auditors, which of the following should be established FIRST7

Question55: An IS auditor is evaluating the log management system for an organization with devices and systems in multiple geographic locations. Which of the following is MOST important for e auditor to verify?

Question56: Which of the following is a detective control?

Question57: Which of the following is the PRIMARY role of an IS auditor with regard to data privacy?

Question58: A company has implemented an IT segregation of duties policy In a role-based environment, which of the following roles may be assigned to an application developer?

Question59: An organization has purchased a replacement mainframe computer to cope with the demands of increased business. Which of the following should be the PRIMARY concern of an IS auditor?

Question60: Following an IS audit recommendation, all Telnet and File Transfer Protocol (FTP) connections have been replaced by Secure Socket Shell (SSH) and Secure File Transfer Protocol (SFTP). Which risk treatment approach has the organization adopted?

Question61: An IS audit manager finds that data manipulation logic developed by the audit analytics team leads to incorrect conclusions This inaccurate logic is MOST likely an indication of lich of the following?

Question62: Which of the following provides the MOST comprehensive description of Its role in an organization?

Question63: When an intrusion into an organizations network is detected, which of the foflomng should be performed FIRST?

Question64: Which of the following is a key success factor for implementing IT governance?

Question65: Which of the following is the PRIMARY reason for database optimization in an environment with a high volume of transactions?

Question66: An organization is deciding whether to outsource its customer relationship management systems to a provider located in another country. Which of the following should be the PRIMARY influence in the outsourcing decision?

Question67: Which of the following should be an IS auditor's PRIMARY focus when developing a risk-banned IS audit program?

Question68: Which of the following is the BEST approach to verify that internal help desk procedures are executed in compliance with policies?

Question69: Which of the following is the MOST effective way to identify anomalous transactions when performing a payroll fraud audit?

Question70: Which of the following cloud deployment models would BEST meet the needs of a startup software development organization with limited initial capital?

Question71: The objectives of business process improvement should PRIMARILY include

Question72: An IS auditor discovered abnormalities in a monthly report generated from a system upgraded six months ago.
Which of the following should be the auditor's FIRST course of action?

Question73: An organization is using a single account shared by personnel for its social networking marketing page. Which of the following is the BEST method to maintain accountability over the account?

Question74: An IS auditor has been asked to perform a post-implementation assessment of a new corporate human resources (HR) system. Which of the following control areas would be OST important to review for the protection of employee information?

Question75: Which of the following is the MOST important process to ensure planned IT system changes are completed in an efficient manner?

Question76: Which of the following would an IS auditor recommend as the MOST effective preventive control to reduce the risk of data leakage'

Question77: Which of the following should be reviewed as part of a data integrity test?

Question78: An IS auditor is performing a post-implementation review of a system deployed two years ago. Which of the following findings should be of MOST concern to the auditor?

Question79: What is the PRIMARY benefit of prototyping as a method of system development?

Question80: An IT management group has developed a standardized security control checklist and distributed it to the control self-assessors in each organizational unit. Which of the following would be the GREATEST risk m this approach?

Question81: The GREATEST risk of database renormalization is:

Question82: Overall responsibility for approving logical access rights to information assets should reside with the:

Question83: Which of the following is the BEST indication of an effective incident management process?

Question84: Which of the following is MOST important for an IS auditor to confirm when reviewing the effectiveness of an incident response program?

Question85: Which of the following is the FIRST step when conducting a business impact analysis?

Question86: Which of the following is the MOST important activity to undertake to avoid rework later in a project?

Question87: Which of the following would represent an acceptable test of an organization s business continuity plan?

Question88: To maintain the confidentiality of information moved between office and home on removable media, which of the following is the MOST effective control?

Question89: An organization s data retention policy states that all data will be backed up, retained for 10 years, and then destroyed. When conducting an audit of the long-term offsite backup program, an IS auditor should:

Question90: Which of the following procedures would BEST contribute to the reliability of information in a data warehouse?

Question91: An organization allows its employees to use personal mobile devices for work. Which of the following would BEST maintain information security without compromising employee privacy?

Question92: An IS auditor learns a server administration team regularly applies work arounds to address repeated failures of critical data processing services. Which of the following would BEST enable the organization to resolve the issue?

Question93: An IS auditor auditing the effectiveness of utilizing a hot site will MOST likely:

Question94: Both statistical and nonstatistical sampling techniques:

Question95: Due to the small size of the payroll department, an organization is unable to segregate the employee setup and payroll processing functions. Which of the following would be the BEST compensating control for the lack of segregation of duties?

Question96: Two organizations will share ownership of a new enterprise resource management (ERM) system To help ensure the successful implementation of the system, it k MOST important to define:

Question97: Following a breach, what is the BEST source to determine the maximum amount of time before customers must be notified that their personal information may have been compromised?

Question98: Which of the following should an IS auditor verify when auditing the effectiveness of virus protection?

Question99: The IS auditor's PRIMARY role in control self-assessment (CSA) is to:

Question100: During a review of a production schedule, an IS auditor observes that a staff member is not complying with mandatory operational procedures. The auditor's NEXT step should be to:

Question101: Which of the following is the MOST critical characteristic of a biometric system?

Question102: Which of the following is the BEST way to help ensure the security of privacy-related data stored by an organization?

Question103: Which of the following would BEST facilitate the detection of internal fraud perpetrated by an individual?

Question104: An organization's IT security policy states that user ID's must uniquely identify individual's and that user should not disclose their passwords. An IS auditor discovers that several generic user ID's are being used.
Which of the following is the MOST appropriate course of action for the auditor/

Question105: When an organization is having new software implemented under contract, which of the following is key to controlling escalating costs due to scope creep?

Question106: An IS audit report highlighting inadequate network internal controls is challenged because no serious incident has ever occurred. Which of the following actions performed during the audit would have BEST supported the findings?

Question107: Which of the following is the MOST important reason to use statistical sampling?

Question108: While reviewing a hot site, the IS auditor discovers that one type of hardware platform is not installed. The IS auditor should FIRST

Question109: An IS auditor evaluating a three-tier client/server architecture observes an issue with graphical user interface (GUI) tasks. Which layer should the auditor recommend the client address?

Question110: Which the following is MOST critical for the effective implementation of IT governance?

Question111: To confirm integrity for a hashed message, the receiver should use

Question112: Which of the following is the KST source of information for assessing the effectiveness of IT process monitoring?

Question113: To ensure efficient and economic use of limited resources in supporting a local area network (LAN) infrastructure, it is advisable to:

Question114: An organization wants to test business continuity using a scenario in which there are many remote workers trying to access production data at the same time. Which of the following is the BEST testing method in this situation?

Question115: Which of the following is the BEST way to evaluate the effectiveness of access controls to an internal network?

Question116: Which of the following should be the PRIMARY consideration for IT management when selecting a new information security tool that monitors suspicious file access patterns?

Question117: Management decided to accept the residual risk of an audit finding and not take the recommended actions. The internal. Audit team believes the acceptance is inappropriate and has discussed the situation with executive management. After this discussion, there is still disagreement regarding the decision. Which of the following is the BEST course of action by internal audit.

Question118: Which of ihe following should be done FIRST to effectively define the IT audit universe for an entity with multiple business lines?

Question119: The independence of an IS auditor auditing an application is maintained if the auditor's role is limited to:

Question120: An organization is considering outsourcing the processing of customer insurance claims. An IS auditor notes that customer data will be sent offshore for processing. Which of the following would be the BEST way to address the risk of exposing customer data?

Question121: An organization was recently notified by its regulatory body of significant discrepancies in its reporting data.
A preliminary investigation revealed that the discrepancies were caused by problems with the organization's data quality. Management has directed the data quality team to enhance their program The audit committee has asked internal audit to be advisors to the process. To ensure that management concerns are addressed, which data set should internal audit recommend be reviewed FIRST?

Question122: A company uses a standard form to document and approve all changes in production programs. To ensure that the forms are properly authorized, which of the following is the MOST effective sampling method?

Question123: Which of the following is MOST important for the improvement of an organization's incident response processes

Question124: An IS auditor notes that application super-user activity was not recorded in system logs. What is the auditor's BEST course of action?

Question125: An organization implements a data loss prevention tool as a control to mitigate the risk of sensitive data leaving the organization via electronic mail. Which of the following would provide the BEST indication of adequate control design?

Question126: During a review of an application system, an IS auditor identifies automated controls designed to prevent the entry of duplicate transactions. What is the BEST way to verify that the controls work as designed?

Question127: During an audit, which of the following would be MOST helpful in establishing a baseline for measuring data quality?

Question128: What is an IS auditor's BEST recommendation for management if a network vulnerability assessment confirms that critical patches have not been applied since the last assessment?

Question129: Which of the following would be MOST important for an IS auditor to review during an audit of an automated continuous monitoring process being used by the finance department.

Question130: Which of the following is the BEST guidance from an IS auditor to an organization planning an initiative to improve the effectiveness of its IT processes?

Question131: Which of the following is the MOST important requirement for an IS auditor to evaluate when reviewing a transmission of personally identifiable information between two organizations?

Question132: During an audit of the organization's data privacy policy, the IS auditor identified that only some IT application databases have encryption in place. What should be the auditors FIRST action?

Question133: Which of the following could be used to evaluate the effectiveness of IT operations?

Question134: A vendor service level agreement (SLA) requires backup to be physically secured. An IS audit of the backup system revealed a number of the backup media were missing. Which of the following should be the auditor's NEXT step?

Question135: A stockbroker accepts orders over the Internet. Which of the following is the MOST appropriate control to ensure confidentiality of the orders?

Question136: A company laptop has been stolen and all photos on the laptop have been published on social media. Which of the following is the IS auditor's BEST course of action?

Question137: An IS auditor has observed gaps in the data available to the organization for detecting incidents. Which of the following would be the BEST recommendation to improve the organization's security incident response capability?

Question138: internal IS auditor recommends that incoming accounts payable payment files be encrypted. Which type of control is the auditor recommending?

Question139: Which of the following is the MOST important consideration when deploying closed-circuit television (CCTV) systems that use wireless communication links to transmit images between cameras and a receiver?

Question140: Which of the following should be an IS auditor's GREATEST concern when evaluating a cybersecurity incident response plan?

Question141: Which of the following tasks should be performed during an organization's business continuity plan (BCP) test?

Question142: Which of the following occurs during the issues management process for a system development project?

Question143: Which of the following should an IS auditor recommend to reduce the likelihood of potential intruders using social engineering?

Question144: Which of the following would BEST assist senior management in evaluating IT performance as well as the alignment between corporate and IT strategic objectives?

Question145: Which of the following would BEST enable an IS auditor to perform an audit that requires testing the full population of data?

Question146: When reviewing business continuity plan (BCP) test results, it is MOST important for the IS auditor to determine whether the test:

Question147: Which of the following is MOST likely to enable a hacker to successfully penetrate a system?

Question148: Adopting a service-oriented architecture would MOST likely:

Question149: When designing metrics for information security, the MOST important consideration is that the metrics:

Question150: An is auditor discovers a recurring software control process issue that severely impacts the efficiency of a critical business process. Which of the following is the BEST recommendation?

Question151: Which of the following BEST ensures that only authorized software is moved into a production environment?

Question152: Which of the following a recent internal data breach, an IS auditor was asked to evaluate information security practices within the organization. Which of the following findings would be MOST important to report to senior management?

Question153: Loss-site scripting (XSS) attacks are BEST prevented through:

Question154: An IS auditor has been asked to advise on the design and implementation of IT management best practices Which of the following actions would impair the auditor's independence?

Question155: Which of the following would be an IS auditor's GREATEST concern when reviewing an organization s security controls for policy compliance?

Question156: An IS auditor is reviewing an organization's sales and purchasing system due to ongoing data quality issues.
An analysis of which of the following would provide the MOST useful formation to determine the revenue loss?

Question157: Which of the following is the PRIMARY benefit of implementing configuration management for IT?

Question158: An intruder accesses an application server and makes changes to the system log. Which of the following would enable the identification of the changes?

Question159: Which of the following is a detective control that can be used to uncover unauthorized access to information systems?

Question160: An IS auditor reviewing an incident management process identifies client information was lost due to ransomware attacks. Which of the following would MOST effectively minimize the impact of future occurrences?

Question161: The grants management system is used to calculate grant payments. Once per day, a batch interface extracts grant amounts and payee details from this system for import into the once system so payments can be made overnight Which of the following controls provides the GREATEST assurance of the accuracy and completeness of the imported payment

Question162: When planning for the implementation of a new system, an organization will opt for a parallel run PRIMARILY to:

Question163: Which of the following would be of MOST concern during an audit of an end-user computing system containing sensitive information?

Question164: Which of the following is the MOST significant risk associated with peer-to-peer networking technology?

Question165: Which of the following is the PRIMARY advantage of using virtualization technology for corporate applications?

Question166: During audit planning, an IS auditor walked through the design of controls related to a new data loss prevention tool. It was noted that the tool will be configured to alert. IT management when large files are sent outside of the organization via email. What type of control will be tested?

Question167: Which of the following is the MOST effective mechanism for ensuring that critical IT operational problems are reported to executive management in a timely manner?

Question168: Which of the following should be of GREATEST concern to an IS auditor reviewing actions taken during a forensic investigation?

Question169: An IS auditor reviewing the use of encryption finds that the symmetric key is sent by an email message between the parties. Which of the following audit responses is correct in this situation?

Question170: Which of the following will BEST ensure that a proper cutoff has been established to reinstate transactions and records to their condition just prior to a computer system failure?

Question171: The MOST efficient way to confirm that an ERP system being implemented satisfies business expectations is to utilize which of the following types of testing?

Question172: Which of the following would be an appropriate role of internal audit in helping to establish an organization's privacy program?

Question173: An employee transfers from an organization's risk management department to become the lead IS auditor.
While in the risk management department, the employee helped developed the key performance indicators (KPIs) now used by the organization. Which of the following would pose the GREATEST threat to the independence of this auditor?

Question174: Which of the following will BEST protect the confidentiality of data stored on the hard drive of a laptop computer?

Question175: A user of a telephone banking system has forgotten his personal identification number (PIN), after the user has been authenticated, the BEST method of issuing a new pin is to have:

Question176: What is the MOST important role of a certificate authority (CA) when a private key becomes compromised?

Question177: Which of the following procedures would BEST contribute to the reliability of information in a data warehouse?

Question178: An IS auditor is mapping controls to risk for an accounts payable system What is the BEST control to detect errors in the system?

Question179: Which of the following would an IS auditor consider to be the MOST significant risk associated with a project to reengineer a business process?

Question180: Which of the following projects would be MOST important to review in an audit of an organizations financial statements?

Question181: An IS auditor would MOST likely recommend that IT management use a balanced scorecard to:

Question182: Which of the following an IS audit, which of the following types of risk would be MOST critical to communicate to key stakeholders?

Question183: To help ensure the accuracy and completeness of end-user computing output it is MOST important to include strong:

Question184: Which of the following would be considered the BEST compensating control to use when an emergency process, rather than the established control procedures, is used for database changes?

Question185: select a sample for testing, which must include the 80 largest client balances and a random sample of the rest, the IS auditor should recommend:

Question186: During a software acquision review, an IS auditor should recommend that there be a software escrow agreement when:

Question187: A large insurance company is about to replace a major financial application. Which of the following is the IS auditor's PRIMARY focus when conducting the pre-implementation review?

Question188: Which of the following is the GREATEST risk posed by denial-of-service attacks?

Question189: Which of the following is the MOST effective way to minimize the risk of a SQL injection attack?

Question190: An IS auditor should ensure that an application's audit trail:

Question191: What would be an IS auditors GREATEST concern when using a test environment for an application audit?

Question192: An organization uses two data centers. Which of the following would BEST address the organization's need for high resiliency?

Question193: An IS auditor has completed a service level management audit related to order management services provided by a third party Which of the following is the MOST significant finding?

Question194: Which of the following is MOST important to include in forensic data collection and preservation procedure?