EMT Practice Test
1. Question Content...
Question3: Which of the following is a detective control?
Question7: Which of the following would BEST detect logic bombs in new programs?
Question20: When auditing a quality assurance plan, an IS auditor should be MOST concerned if the:
Question28: Which of the following is the PRIMARY role of an IS auditor with regard to data privacy?
Question31: What is the FIRST step an auditor should take when beginning a follow-up audit?
Question33: When conducting a requirements analysis for a project, the BEST approach would be to:
Question41: Both statistical and nonstatistical sampling techniques:
Question61: What is the PRIMARY benefit of prototyping as a method of system development?
Question64: Before concluding that internal controls can be relied upon, the IS auditor should:
Question69: Which of the following is the PRIMARY advantage of single sign-on (SSO)?
Question70: Which of the following is corrective control?
Question77: The MAJOR reason for segregating test programs from production programs is to:
Question81: Which of the following features can be provided only by asymmetric encryption?
Question84: Intrusion detection systems (IDSs) can:
Question89: Which of the following is an example of audit risk?
Question94: The GREATEST risk of database renormalization is:
Question97: Which of the following is MOST important when an incident may lead to prosecution?
Question101: Which of the following BEST determines if a batch update job was completed?
Question102: Which of the following is the MOST likely cause of a successful firewall penetration?
Question107: To confirm integrity for a hashed message, the receiver should use
Question118: Capacity management enables organizations to:
Question120: Which of the following scenarios would enable a forensic investigation?
Question139: An IS auditor auditing the effectiveness of utilizing a hot site will MOST likely:
Question141: Which of the following is the GREATEST risk posed by denial-of-service attacks?
Question146: Loss-site scripting (XSS) attacks are BEST prevented through:
Question154: The IS auditor's PRIMARY role in control self-assessment (CSA) is to:
Question157: An IT governance framework provides an organization with:
Question159: Which of the following could be determined by an entity-relationship diagram?
Question160: The quality assurance (QA) function should be prevented from
Question170: Which of the following are BEST suited for continuous auditing?
Question172: When reviewing a disaster recovery plan (DRP) an IS auditor should examine the:
Question174: An IS auditor can BEST help management fulfill risk management responsibilities by:
Question188: Which of the following is a directive control?
Question191: The BEST data backup strategy for mobile users is to:
Question192: Which of the following is a key success factor for implementing IT governance?
Question198: Which of the following should be reviewed FIRST when planning an IS audit?
Question199: Which of the following is MOST likely to result from compliance testing?
Question200: Which of the following should be reviewed as part of a data integrity test?
Question207: Which type of risk would MOST influence the selection of a sampling methodology?
Question215: The objectives of business process improvement should PRIMARILY include
Question230: The scheduling of audit follow-ups should be based PRIMARILY on