EMT Practice Test
1. Question Content...
Question2: Which of the following is the PRIMARY role of an IS auditor with regard to data privacy?
Question9: Which of the following BEST helps to identify errors during data transfer?
Question20: An IT governance framework provides an organization with:
Question25: In a RAO model, which of the following roles must be assigned to only one individual?
Question31: maturity model is useful in the assessment of IT service management because it:
Question33: Which of the following would BEST enable alignment of IT with business objectives?
Question42: Which of the following would MOST likely impact the integrity of a database backup?
Question50: Attribute sampling is BEST suited to estimate:
Question65: Which of the following is corrective control?
Question68: Which of the following reflects inadequate segregation of duties?
Question69: MOST effective way to determine if IT is meeting business requirements is to establish:
Question71: What is the PRIMARY benefit of prototyping as a method of system development?
Question73: The recovery time objective (RTO) is normally determined on the basis of the:
Question75: Which of the following should be an IS auditor's FIRST activity when planning an audit?
Question86: The demilitarized zone (DMZ) is the part of a network where servers that are placed are:
Question88: Which of the following is a reason for implementing a decentralized IT governance model?
Question89: Which of the following is MOST influential when defining disaster recovery strategies?
Question100: Which of the following is MOST important when an incident may lead to prosecution?
Question104: The PRIMARY advantage of object oriented technology is enhanced:
Question109: The FIRST step in establishing a firewall security policy is to determine the:
Question111: A disk management system's PRIMARY function is to:
Question117: Which of the following is a key success factor for implementing IT governance?
Question118: The information security function in a large organization is MOST effective when:
Question125: The GREATEST benefit of risk-based auditing is that it:
Question138: The quality assurance (QA) function should be prevented from
Question144: Which of the following is the GREATEST risk posed by denial-of-service attacks?
Question165: Which of the following is an advantage of using electronic data interchange (EDI)?
Question175: Which of the following is the PRIMARY responsibility of an information owner?
Question181: Which of the following is a directive control?
Question188: When developing a risk-based IS audit plan, the PRIMARY focus should be on functions:
Question194: Loss-site scripting (XSS) attacks are BEST prevented through:
Question210: The MAJOR reason for segregating test programs from production programs is to:
Question214: Which of the following BEST determines if a batch update job was completed?
Question219: Which of the following features can be provided only by asymmetric encryption?
Question235: Which of the following are BEST suited for continuous auditing?
Question240: What is the purpose of a hypervisor?
Question253: Which of the following is MOST likely to be included in a post-implementation review?