EMT Practice Test

1. Question Content...


Question List

Question1: An organization is using a single account shared by personnel for its social networking marketing page. Which of the following is the BEST method to maintain accountability over the account?

Question2: Which of the following is the PRIMARY role of an IS auditor with regard to data privacy?

Question3: An IS auditor reviews change control tickets and finds an emergency change request where an IT manager approved the change, modified the code on the production platform, an solved the ticket Which of the following should be the auditor's GREATEST concern?

Question4: An IS audit report highlighting inadequate network internal controls is challenged because no serious incident has ever occurred. Which of the following actions performed during the audit would have BEST supported the findings?

Question5: Which of the following is the PRIMARY responsibility of an organizations information security function?

Question6: An IS auditor found that a company executive is encouraging employee use of social networking sites for business purposes. Which of the following recommendations would BEST help to reduce the risk of data leakage?

Question7: After the release of an application system, an IS auditor wants to verify that the system is providing value to the organization. The auditor's BEST course of action would be to:

Question8: Which of the following is the MOST effective way to minimize the risk of a SQL injection attack?

Question9: Which of the following BEST helps to identify errors during data transfer?

Question10: Which of the following would be the MOST effective method to identify high risk areas in the business to be included in the audit plan?

Question11: Of the following, who should authorize a project management team's request to take a mission-critical application offline to implement a new release and configuration?

Question12: Which of the following would have the GREATEST impact on defining the classification levels for electronic documents?

Question13: When developing a business continuity plan (BCP) business unit management's involvement is MOST important during the

Question14: What is the MOST important role of a certificate authority (CA) when a private key becomes compromised?

Question15: A retirement system verifies that the field for employee status has either a value of A (for active) or R (for retired). This is an example of which type of check?

Question16: A CIO has asked an IS to implement several security controls for an organization's IT process and system. The auditor should:

Question17: Which of the following system deployments requires the cloud provider to assume the widest range of responsibilities for data protection?

Question18: Which of the following would be an auditor's GREATEST concern when reviewing data inputs from spreadsheets into the core finance system?

Question19: A system administrator recently informed the IS auditor about the occurrence of several unsuccessful intrusion attempts from outside the organization. Which of the following is MOST effective in detecting such an intrusion?

Question20: An IT governance framework provides an organization with:

Question21: Which of the following findings should hr of GREATEST concern for an IS auditor when auditing the effectiveness of a phishing simulation test administered for staff members?

Question22: As part of an IS audit, the auditor notes the practices listed below.
Which of the following would be a segregation of duties concern?

Question23: An effective implementation of security roles and responsibilities is BEST evidenced across an enterprise when:

Question24: An IS auditor is involved in the user testing phase of a development project. The developers wish to use a copy of a peak volume transaction file from the production process to should that the development can cope with the required volume What is the auditor s PRIMARY concern?

Question25: In a RAO model, which of the following roles must be assigned to only one individual?

Question26: An IS auditor has discovered that unauthorized customer management software was installed on a workstation.
The auditor determines the software has been uploading customer ita to an external party. Which of the following is the IS auditor's BEST course of action?

Question27: MOST critical security weakness of a packet level firewall is that it can be circumvented by:

Question28: Which of the following is the BEST type of backup to minimize the associated time and media?

Question29: Which of the following procedures should be implemented prior to disposing of surplus computer equipment to employees?

Question30: Which of the following is the PRIMARY reason for database optimization in an environment with a high volume of transactions?

Question31: maturity model is useful in the assessment of IT service management because it:

Question32: Which of the following procedures would BEST contribute to the reliability of information in a data warehouse?

Question33: Which of the following would BEST enable alignment of IT with business objectives?

Question34: Which of the following would be of MOST concern during an audit of an end-user computing system containing sensitive information?

Question35: An IS auditor performs a follow-up audit and learns the approach taken by the auditee to fix the findings differs from the agreed-upon approach confirmed during the last audit. Which of the following should be the auditor's NEXT course of action?

Question36: An audit team has a completed schedule approved by the audit committee. After starting some of the scheduled audits, executive management asked the team to immediately audit an additional process. There are not enough resources available to add the additional audit to the schedule. Which of the following is the BEST course of action?

Question37: A start-up company acquiring for its order-taking system is unable to predict the volume of transactions.
Which of the following is MOST important for the company to consider?

Question38: An IS auditor is analysing a sample of assesses recorded on the system log of an application. The auditor intends to launch an intensive investigation if one exception is found. Which sampling method would be appropriate?

Question39: Which of the following IS functions can be performed by the same group or individual while still providing the proper segregation of duties?

Question40: The MOST effective method for an IS auditor to determine which controls are functioning in an operating system is to:

Question41: An organization has recently converted its infrastructure to a virtualized environment. The GREATEST benefit related to disaster recovery is that virtualized servers:

Question42: Which of the following would MOST likely impact the integrity of a database backup?

Question43: An IS auditor has been asked to perform a post-implementation assessment of a new corporate human resources (HR) system. Which of the following control areas would be OST important to review for the protection of employee information?

Question44: Which of the following procedures should an IS auditor complete FIRST when evaluating the adequacy of IT key performance indicators (KPIs)?

Question45: The risk that the IS auditor will not find an error that has occurred is identified by which of the following terms?

Question46: An IS auditor determines that an online retailer processing credit card information does not have a data classification process. The auditor's NEXT step should be

Question47: Which of the following is the BEST way to control the concurrent use of licensed software?

Question48: An IS auditor was involved in the design phase for a new system's security architecture. For the planned post-implementation audit which of the following would be the MOST appropriate course of action for the auditor?

Question49: A bank is selecting a server for its retail accounts application. To ensure that the server can handle a high volume of transactions with the required response times, which test should the IS auditor recommend?

Question50: Attribute sampling is BEST suited to estimate:

Question51: During an audit of a data center, an IS auditor's BEST way to gain an understanding of physical security controls is to:

Question52: A vendor service level agreement (SLA) requires backup to be physically secured. An IS audit of the backup system revealed a number of the backup media were missing. Which of the following should be the auditor's NEXT step?

Question53: Which of the following MOST efficiently protects computer equipment against short-term reductions in electrical power?

Question54: Which of the following activities would allow an IS auditor to maintain independence while facilitating a control self-assessment (CSA)?

Question55: The operations team of an organization has reported an IS security attack. Which of the following should be the NEXT step for the security incident response team?

Question56: An organization's plans to implement a virtualization strategy enabling multiple operating systems on a single host. Which of the following should be the GREATEST concern with this strategy?

Question57: A sales representative is reviewing the organization's feedback blog and gets redirected to a site that sells illegal prescription drugs. The blog site is MOST likely susceptible to which of the following types of attacks?

Question58: A company laptop has been stolen and all photos on the laptop have been published on social media. Which of the following is the IS auditor's BEST course of action?

Question59: Which of the following BEST enables an IS auditor to identify gaps between the current state and future state of an organization's IT infrastructure?

Question60: Which of the following should be an IS auditor's FIRST action when assessing the risk associated with unstructured data?

Question61: When reviewing the effectiveness of data center operations, the IS auditor would FIRST -stablish that system performance:

Question62: Which of the following is MOST important to ensure when planning a black box penetration test?

Question63: An organization has performance metrics to track how well IT resources are being used, but there has been little progress on meeting the organization's goals. Which of the following would be MOST helpful to determine the underlying reason?

Question64: Which of the following should be the PRIMARY consideration when developing an IT strategy?

Question65: Which of the following is corrective control?

Question66: Which of the following security mechanisms should be used to prevent disclosures of personally identifiable information (PH) when performing data analytics?

Question67: When reviewing a newly implemented quality management system (QMS), which of the following should be the IS auditor's PRIMARY concern?

Question68: Which of the following reflects inadequate segregation of duties?

Question69: MOST effective way to determine if IT is meeting business requirements is to establish:

Question70: Overall responsibility for approving logical access rights to information assets should reside with the:

Question71: What is the PRIMARY benefit of prototyping as a method of system development?

Question72: When designing metrics for information security, the MOST important consideration is that the metrics:

Question73: The recovery time objective (RTO) is normally determined on the basis of the:

Question74: Which of the following should an IS auditor expect to find when reviewing IT security policy?

Question75: Which of the following should be an IS auditor's FIRST activity when planning an audit?

Question76: An IS auditor finds that a company is using a payroll provider hosted in a foreign country Of the following the MOST important audit consideration is whether the provider s operations;

Question77: Which of the following is the BEST indication of an effective incident management process?

Question78: Management decided to accept the residual risk of an audit finding and not take the recommended actions. The internal. Audit team believes the acceptance is inappropriate and has discussed the situation with executive management. After this discussion, there is still disagreement regarding the decision. Which of the following is the BEST course of action by internal audit.

Question79: Which of the following is the MOST effective control to minimize the risk of cross-site scripting (XSS)?

Question80: Which of the following would be MOST important for an IS auditor to review during an audit of an automated continuous monitoring process being used by the finance department.

Question81: Reviewing which of the following would be MOST helpful in assessing whether an organization s IT performance measures are comparable to other organizations in the same industry?

Question82: Which of the following protects against the impact of temporary and rapid decreases or increases in electricity?

Question83: Which of the following would represent an acceptable test of an organization s business continuity plan?

Question84: An organization performs nightly backups but does not have a formal policy. An IS auditor should FIRST

Question85: Which of the following is the MOST significant risk associated with the use of visualization?

Question86: The demilitarized zone (DMZ) is the part of a network where servers that are placed are:

Question87: An IS auditor is a member of an application development team that is selecting software. Which of the following would impair the auditor's independence?

Question88: Which of the following is a reason for implementing a decentralized IT governance model?

Question89: Which of the following is MOST influential when defining disaster recovery strategies?

Question90: An e-commerce enterprise's disaster recovery (DR) site has 30% less processing capability than the primary site. Based on this information, which of the following presents the GREATEST risk?

Question91: Which of the following findings should be an IS auditor's GREATEST concern when reviewing an organization's purchase of new IT infrastructure hardware?

Question92: Which of the following is MOST important to include in a contract to outsource data processing that involves customer personally identifiable information (Pit)?

Question93: Which of the following validation techniques would BEST prevent duplicate electronic vouchers?

Question94: When migrating critical systems to a cloud provider, the GREATEST data security concern for an organization would be that data from different clients may be:

Question95: Which of the following BEST provides audit management with a view of potential performance improvements within the organizations IS audit function?

Question96: Which of the following is the MOST effective control to ensure electronic records beyond their retention periods are deleted from IT systems?

Question97: Which procedure provides the GREATEST assurance that corrective action to an audit report has been taken?

Question98: A review of an organization's IT portfolio revealed several applications that are not in use. The BEST way to prevent this situation from recurring would be to implement.

Question99: In attribute sampling, what is the relationship between expected error rate and sample size?

Question100: Which of the following is MOST important when an incident may lead to prosecution?

Question101: When testing segregation of duties, which of the following audit techniques provides the MOST reliable evidence?

Question102: Which of the following BEST indicates the effectiveness of an organization's risk management program?

Question103: Which of the following methods should be used to effectively erase sensitive data from portable storage devices that are to be reused?

Question104: The PRIMARY advantage of object oriented technology is enhanced:

Question105: An IT governance body wants to determine whether IT service delivery is based on consistently efficient and effective processes. Which of the following would be the BEST approach?

Question106: Which of the following is MOST important for an IS auditor to do during an exit meeting with an auditee?

Question107: Which of the following is MOST important for an IS auditor to verify during a disaster recovery audit?

Question108: Loading of illegal software packages onto a network by an employee is MOST effectively detected by:

Question109: The FIRST step in establishing a firewall security policy is to determine the:

Question110: Spreadsheets are used to calculate project cost estimates Totals for each cost category are then keyed into the job-costing system. What is the BIST control to ensure that data are accurately entered into the system?

Question111: A disk management system's PRIMARY function is to:

Question112: Which of the following should be of GREATEST concern to an IS auditor reviewing the controls for a continuous software release process?

Question113: During a review of an application system, an IS auditor identifies automated controls designed to prevent the entry of duplicate transactions. What is the BEST way to verify that the controls work as designed?

Question114: Which of the following is MOST important to the effective management of an end user developed application?

Question115: Which of the following is the GREATEST risk resulting from conducting periodic reviews of IT over several years based on the same audit program?

Question116: The BEST way for an IS auditor to determine which business processes are currently outsourced to a specific service provider is to review the:

Question117: Which of the following is a key success factor for implementing IT governance?

Question118: The information security function in a large organization is MOST effective when:

Question119: Which of the following BEST provides continuous availability of network bandwidth for critical application services?

Question120: Which of the following would be the MOST likely reason for an intrusion prevention system (IPS) being unable to block an ongoing web attack?

Question121: A region where an organization conducts business has announced changes in privacy legislation. Which of the following should an IS auditor do FIRST to prepare for the changes?

Question122: On a daily basis, an in-house development team moves duplicate copies of production data containing personally identifiable information (Pll) to the test environment Which of the following is the BEST way to mitigate the privacy risk involved?

Question123: Which of the following is the BEST approach to identify whether a vulnerability is actively being exploited?

Question124: An IS auditor performing an audit of backup procedures observes that backup tapes are picked up weekly and stored offsite at a deed party hosting faculty. Which of the following recommendations would be the BEST way to maintain data integrity during transport?

Question125: The GREATEST benefit of risk-based auditing is that it:

Question126: The decision to accept an IT control risk related to data quality should be the responsibility of the:

Question127: An organization has implemented application whitelisting in response to the discovery of a large amount of unapproved software. Which type of control has been deployed?

Question128: For an organization which uses a VoIP telephony system exclusively, the GREATEST concern associated with leaving a connected telephone in an unmonitored public area is the possibility of:

Question129: Which of the following projects would be MOST important to review in an audit of an organizations financial statements?

Question130: Which of ihe following is the BEST way to control scope creep during application system development?

Question131: Which of the following poses the GREATEST risk to the enforceability of networking policies in a virtualized environment?

Question132: The grants management system is used to calculate grant payments. Once per day, a batch interface extracts grant amounts and payee details from this system for import into the once system so payments can be made overnight Which of the following controls provides the GREATEST assurance of the accuracy and completeness of the imported payment

Question133: When engaging services from external auditors, which of the following should be established FIRST7

Question134: Following an IS audit recommendation, all Telnet and File Transfer Protocol (FTP) connections have been replaced by Secure Socket Shell (SSH) and Secure File Transfer Protocol (SFTP). Which risk treatment approach has the organization adopted?

Question135: Prior to the migration of acquired software into production, it is MOST important that the IS auditor review the:

Question136: Buffer overflow in an Internet environment is of particular concern to the IS auditor because it can:

Question137: Which of the following provides the MOST assurance that a newly developed web application does not have IT security issues?

Question138: The quality assurance (QA) function should be prevented from

Question139: During an external assessment of network vulnerability, which of the following activities should be performed FIRST?

Question140: During a review of a production schedule, an IS auditor observes that a staff member is not complying with mandatory operational procedures-The auditor's NEXT step should be to:

Question141: Which of the following activities is MOST important in determining whether a test of a disaster recovery plan (DRP) has been successful?
Analyzing whether predetermined test objectives were met

Question142: Due to the increasing size of a database, user access times and daily backups continue to increase. Which of the following would be the BEST way to address this situation?

Question143: A legacy application is running on an operating system that is no longer supported by vendor, if the organization continues to use the current application, which of the application should be the IS auditor's GREATEST concern?

Question144: Which of the following is the GREATEST risk posed by denial-of-service attacks?

Question145: Which of the following will BEST ensure that a proper cutoff has been established to reinstate transactions and records to their condition just prior to a computer system failure?

Question146: What is an IS auditor's BEST recommendation for management if a network vulnerability assessment confirms that critical patches have not been applied since the last assessment?

Question147: A database administrator (DBA) extracts a user listing for an auditor as testing evidence. Which of the following will provide the GREATEST assurance that the user listing is reliable'

Question148: An IS audit reveals that an organization is not proactively addressing known vulnerabilities. Which of the following should the IS auditor recommend the organization do FIRST?

Question149: An IS auditor is conducting a pre-implementation review to determine a new system's production readiness.
The auditor's PRIMARY concern should be whether:

Question150: Which of the following is the BEST reason for an organization to develop a business continuity plan?

Question151: An IS auditor is conducting a review of an organization s information systems and discovers data that is no longer needed by business applications. Which of the following would b IS auditor's BEST recommendation?

Question152: An organization is developing data classification standards and has asked internal audit for advice on aligning the standards with best practices. Internal audit would MOST likely recommend the standards should be:

Question153: An IT management group has developed a standardized security control checklist and distributed it to the control self-assessors in each organizational unit. Which of the following would be the GREATEST risk m this approach?

Question154: An IS audit manager finds that data manipulation logic developed by the audit analytics team leads to incorrect conclusions This inaccurate logic is MOST likely an indication of lich of the following?

Question155: IS management has decided to replace the current single-server-based local area network (LAN) with three interconnected servers running different operating systems. Existing applications and data on the old server have been exclusively distributed on the new servers. This will MOST likely result in:

Question156: An organization wants to reuse company-provided smartphones collected from staff leaving the organization.
Which of the following would be the BEST recommendation?

Question157: Which of the following is MOST important for an IS auditor to consider when determining an appropriate sample size in situations where selecting the entire population is not feasible?

Question158: The BEST method an organization can employ to align its business continuity plan (BCP) and disaster recovery plan (DRP) with core business needs is to:

Question159: In a follow-up audit, an IS auditor notes that management has addressed the original findings in a different way than originally agreed upon. The auditor should FIRST:

Question160: Which of the following is the MOST effective mechanism for ensuring that critical IT operational problems are reported to executive management in a timely manner?

Question161: Since data storage of a critical business application is on a redundant array of inexpensive disks (RAID).
Backup are not considered essential. The IS auditor should recommend proper backup because RAID:

Question162: In reviewing the IT strategic plan, the IS auditor should consider whether it identifies the:

Question163: When an intrusion into an organizations network is detected, which of the foflomng should be performed FIRST?

Question164: A security review reveals an organization b struggling with a large number of findings from vulnerability scans. What should the IS auditor recommend be done FIRST.

Question165: Which of the following is an advantage of using electronic data interchange (EDI)?

Question166: Which of the following it BEST enabled by following a configuration management process for new applications?

Question167: Due to cost restraints, a company defers the replacement of hardware supporting core applications. Which of the following represents the GREATEST risk?

Question168: Which of the following is the BEST time for an IS auditor to perform a post-implementation review?

Question169: Which of the following BEST enables an audit department to improve the quality of work performed by its auditors?

Question170: Which of the following is MOST important for an IS auditor to consider when evaluating a Software as a Service (SaaS) arrangement?

Question171: A recent audit identified duplicate software licenses and technologies Which of the following would be MOST helpful to prevent this type of duplication in the future?

Question172: When replacing a critical software application, which of the following provides for the LOWEST risk of interruption to business processes?

Question173: Which of the following data would be used when performing a business impact analysis (BIA)?

Question174: Which of the following controls MOST effectively reduces the risk associated with use of instant messaging (IM) in the workplace?

Question175: Which of the following is the PRIMARY responsibility of an information owner?

Question176: Performance monitoring tools report that servers are significantly below their planned utilization. Which of the following would be the BEST recommendation?

Question177: Which of the following is the BEST development methodology to help manage project requirements in a rapidly changing environment?

Question178: Which of the following is the FIRST consideration when developing a data retention policy?

Question179: An employee loses a mobile device resulting in loss of sensitive corporate data. Which of the following would have BEST prevented data leakage?

Question180: Which of the following is the BEST approach for performing a business impact analysis (BIA) of a supply-chain management application?

Question181: Which of the following is a directive control?

Question182: When conducting a follow-up audit on an organization s firewall configuration, the IS auditor discovered that the firewall had been integrated into a new system that provides both firewall and intrusion detection capabilities. The IS auditor should:

Question183: An IS auditor evaluating a three-tier client/server architecture observes an issue with graphical user interface (GUI) tasks. Which layer should the auditor recommend the client address?

Question184: What would be an IS auditors GREATEST concern when using a test environment for an application audit?

Question185: An organization using development operations (DevOps) processes has deployed tools to provide automated configuration management functionality. Which of the following is the BEST way to ensure changes to system configuration do not inadvertently introduce security vulnerabilities into production platforms?

Question186: Which of the following BEST describes a common risk in implementing a new application software package?

Question187: During a routine check, a system administrator identifies unusual activity indicating an intruder within a firewall. Which of the following controls has MOST likely been compromised?

Question188: When developing a risk-based IS audit plan, the PRIMARY focus should be on functions:

Question189: A 5 year audit plan provides for general audits every year and application audits on alternating years. To achieve higher efficiency, the IS audit manager would MOST likely:

Question190: Which of the following access rights in the production environment should be granted to a developer to maintain segregation of duties?

Question191: During an audit of a reciprocal disaster recovery agreement between two companies, the IS auditor would be MOST concerned with the:

Question192: When auditing the security architecture of an e-commerce environment, an IS auditor should FIRST review the:

Question193: During an IS audit, it is discovered that security configurations differ across the organization's virtual server farm. Which of the following is the IS auditor's BEST recommendation to proving the control environment?

Question194: Loss-site scripting (XSS) attacks are BEST prevented through:

Question195: An IS auditor notes that several users have not logged into an application for more than one year. Which of the following would be the BEST audit recommendation?

Question196: Which of the following should be performed FIRST when preparing to deploy a major upgrade to a critical online application?

Question197: An organization uses electronic funds transfer (EFT) to pay its vendors. Which of the following should be an IS auditor s MAIN focus while reviewing controls in the accounts payable Application?

Question198: Digital signatures are an effective control method for information exchange over an insecure network because they:

Question199: Which of the following should an IS auditor recommend to facilitate the management of baseline requirements for hardening of firewalls?

Question200: A design company has multiple name and address files for its customers in several of its independent systems.
Which of the following is the BEST control to ensure that the customer name and address agree across all files?

Question201: Which of the following is the MOST effective way to assess whether an outsourcer's controls are following the service level agreement (SLA)?

Question202: Which of the following would be the GREATEST concern to an IS auditor reviewing an IT outsourcing arrangement?

Question203: To test the integrity of the data in the accounts receivable master file, an IS auditor particularly interested in reviewing customers with balances over $400.000. the selection technique the IS auditor would use to obtain such a sample is called:

Question204: Which of the following is the GREATEST concern associated with migrating computing resources to a cloud virtualized environment?

Question205: A CIO has asked an IS auditor to implement several security controls for an organization s IT processes and systems. The auditor should:

Question206: Which of the following is the BEST guidance from an IS auditor to an organization planning an initiative to improve the effectiveness of its IT processes?

Question207: An IS auditor finds that an organization's data loss prevention (DLP) system is configured to use vendor default settings to identify violations. The auditor's MAIN concern should be that:

Question208: Following a breach, what is the BEST source to determine the maximum amount of time before customers must be notified that their personal information may have been compromised?

Question209: Which of the following is the MOST important requirement for an IS auditor to evaluate when reviewing a transmission of personally identifiable information between two organizations?

Question210: The MAJOR reason for segregating test programs from production programs is to:

Question211: Which of the following should be an IS auditor's PRIMARY consideration when evaluating the development and design of a privacy program?

Question212: Which of the following is the MOST appropriate action to formalize IT governance in an organization?

Question213: An IS auditor reviewing the acquisition of new equipment would consider which of the following to be a significant weakness?

Question214: Which of the following BEST determines if a batch update job was completed?

Question215: An organization's IT security policy states that user ID's must uniquely identify individual's and that user should not disclose their passwords. An IS auditor discovers that several generic user ID's are being used.
Which of the following is the MOST appropriate course of action for the auditor/

Question216: Which of the following would provide the MOST reliable evidence to indicate whether employee access has been deactivated in a timely manner following termination?

Question217: Which of the following is the MOST efficient solution for a multi-location healthcare organization that wants to be able to access patient data wherever patients present themselves for care?

Question218: A post-implementation review of a system implementation has identified that the defined objectives were changed several times without the approval of the project board. What would the IS auditor do NEXT?

Question219: Which of the following features can be provided only by asymmetric encryption?

Question220: An organization with high availability resource requirements is selecting a provider for cloud computing.
Which of the following would cause the GREATEST concern to an IS auditor? The provider:

Question221: An organization is deciding whether to outsource its customer relationship management systems to a provider located in another country. Which of the following should be the PRIMARY influence in the outsourcing decision?

Question222: During a review of an organization's network threat response process. The IS auditor noticed that the majority of alerts were closed without resolution. Management responded that those alerts were unworkable due to lack of actionable intelligence, and therefore the support team is allowed to close them. What is the best way for the auditor to address the situation?

Question223: While reviewing similar issues in an organization's help desk system. An IS auditor finds that they were analysed independently and resolved differently. This situation MOST likely indicates a deficiencies in

Question224: Which of the following is the MOST significant driver of efficient handling of information security incidents?

Question225: Which of the following would MOST effectively and executive management in achieving IT and business alignment?

Question226: Which of the following management decisions presents the GREATEST risk associated with data leakage?

Question227: Which of the following should be of GREATEST concern to an IS auditor when evaluating a new system's production readiness?

Question228: During an audit of a mission-critical system hosted in an outsourced data center, an IS auditor discovers that contracted routine maintenance for the alternate power generator was not performed. Which of the following should be the auditor's MAIN concern?

Question229: Which of the following is the MOST critical step prior to performing a network penetration test?

Question230: An organization was recently notified by its regulatory body of significant discrepancies in its reporting data.
A preliminary investigation revealed that the discrepancies were caused by problems with the organization's data quality. Management has directed the data quality team to enhance their program The audit committee has asked internal audit to be advisors to the process. To ensure that management concerns are addressed, which data set should internal audit recommend be reviewed FIRST?

Question231: During the procurement process which of the following would be the BEST indication that prospective vendors will meet the organization's needs?

Question232: Which of the following is the BEST way to evaluate the effectiveness of access controls to an internal network?

Question233: Which of the following control? MOST efficiently ensures that orders transmitted from a sales office to a production warehouse are received accurately and completely?

Question234: When connecting to an organization's intranet from the Internet, security against unauthorized access is BEST achieved by using:

Question235: Which of the following are BEST suited for continuous auditing?

Question236: Which of the following is the BEST method for uncovering shadow IT within an organization?

Question237: An IS auditor is asked to review a large organization's change management process. Which of the following practices presents the GREATEST risk?

Question238: Which of the following would an IS auditor recommend as the MOST effective preventive control to reduce the risk of data leakage'

Question239: Which of the following approaches would utilize data analytics to facilitate the testing of a new account creation process?

Question240: What is the purpose of a hypervisor?

Question241: To ensure the integrity of a recovered database, which of the following would be MOST useful?

Question242: In reviewing the project timeline for a significant application software development project the IS auditor notes that no time was allocated for the design and performance of program code unit tests. Which of the following should (he auditor recommend?

Question243: To help ensure the accuracy and completeness of end-user computing output it is MOST important to include strong:

Question244: An existing system is being replaced with a new application package. User acceptance testing (UAT) should ensure that:

Question245: Which of the following factors will BEST promote effective information security management?

Question246: Which of the following is the PRIMARY reason for an IS auditor to use computer-assisted audit techniques (CAATs)?

Question247: When introducing a maturity model to the IT management process, it is BEST to align the maturity level to a point that reflects which of the following?

Question248: The IS auditor has identified a potential fraud perpetrated by the network administrator. The IS auditor should:

Question249: An organization uses two data centers. Which of the following would BEST address the organization's need for high resiliency?

Question250: An IS auditor is reviewing the upgrading of an operating system. Which of the following would be the GREATEST audit concern?

Question251: Which of the following is MOST important to helping incident response managers quickly and accurately estimate the overall business impact of security incidents?

Question252: An IS auditor finds the timeliness and depth of information regarding the organization's IT projects varies based on which project manager is assigned. Which of the following recommendations would be A MOST helpful in achieving predictable and repeatable project management processes?

Question253: Which of the following is MOST likely to be included in a post-implementation review?

Question254: An IS auditor has assessed a payroll service provider's security policy and finds significant topics are missing.
Which of the following is the auditor's BEST course of action?

Question255: Which of the following is the MOST important reason for updating and retesting a business continuity plan (BCP)7

Question256: Which of the following should be of GREATEST concern to an IS auditor conducting an audit of incident response procedures?

Question257: When evaluating the recent implementation of an intrusion detection system (IDS), an IS auditor should be MOST concerned with inappropriate:

Question258: An IS auditor identifies key controls that have been overridden by management. The next step the IS auditor should take is to

Question259: While reviewing similar issues in an organization s help desk system, an IS auditor finds that they were analyzed independently and resolved differently This situation MOST likely indicates a deficiency in:

Question260: During an audit of information security procedures of a large retailer s online store, an IS auditor notes that operating system (OS) patches are automatically deployed upon -. Which of the following should be of GREATEST concern to the auditor?

Question261: Which of the following is MOST important to include in forensic data collection and preservation procedure?

Question262: During audit planning, an IS auditor walked through the design of controls related to a new data loss prevention tool. It was noted that the tool will be configured to alert. IT management when large files are sent outside of the organization via email. What type of control will be tested?

Question263: During an audit of identity and access management, an IS auditor finds that the engagement audit plan does not include the testing of controls that regulate access by third parties. Which of the following would be the auditor's BEST course of action?

Question264: An organization using instant messaging to communicate with customers can prevent legitimate customers from being impersonated by:

Question265: A stockbroker accepts orders over the Internet. Which of the following is the MOST appropriate control to ensure confidentiality of the orders?

Question266: ..risk that the IS auditor will not find an error that has occurred is identified by which of the following terms?

Question267: An IS auditor finds that corporate mobile devices used by employees have varying levels of password settings.
Which of the following would be the BEST recommendation?