EMT Practice Test

1. Question Content...


Question List

Question1: An organization was recently notified by its regulatory body of significant discrepancies in its reporting data.
A preliminary investigation revealed that the discrepancies were caused by problems with the organization's data quality. Management has directed the data quality team to enhance their program The audit committee has asked internal audit to be advisors to the process. To ensure that management concerns are addressed, which data set should internal audit recommend be reviewed FIRST?

Question2: The BEST data backup strategy for mobile users is to:

Question3: An IS auditor notes that application super-user activity was not recorded in system logs. What is the auditor's BEST course of action?

Question4: Which of the following is the MOST important consideration when deploying closed-circuit television (CCTV) systems that use wireless communication links to transmit images between cameras and a receiver?

Question5: Which of the following is the BEST way to minimize leakage of data in transit?

Question6: Which of the following activities is MOST important to consider when conducting IS audit planning?

Question7: Which of the following would be the MOST effective method to identify high risk areas in the business to be included in the audit plan?

Question8: Which of the following should be an IS auditor's FIRST activity when planning an audit?

Question9: In assessing the priority given to systems covered in an organization's business continuity plan (BCP), an IS auditor should FIRST:

Question10: Which the following is MOST critical for the effective implementation of IT governance?

Question11: Which of the following would be the MOST effective method to address software license violations on employee workstations?

Question12: A PRIMARY benefit derived by an organization employing control self-assessment (CSA) techniques s that CSA.

Question13: A security review focused on data loss prevention (DLP) revealed the organization has no visibility to data stored in the cloud. What is the IS auditors BEST recommendation to address this issue?

Question14: Which of the following control checks would utilize data analytics?

Question15: An IS auditor was involved in the design phase for a new system's security architecture. For the planned post-implementation audit which of the following would be the MOST appropriate course of action for the auditor?

Question16: Performance monitoring tools report that servers are significantly below their planned utilization. Which of the following would be the BEST recommendation?

Question17: Which of the following is the BEST way to evaluate the effectiveness of access controls to an internal network?

Question18: Which of the following is MOST important for an IS auditor to verify during a disaster recovery audit?

Question19: The lack of which of the following represents the GREATEST risk to the quality of developed software?

Question20: Audit management has just completed the annual audit plan for the upcoming year, which consists entirely of high-risk processor. However it is determined that there are insufficient resources to execute the plan. What should be done NEXT?

Question21: Which of the following is MOST likely to enable a hacker to successfully penetrate a system?

Question22: Which of the following is MOST important to include in forensic data collection and preservation procedure?

Question23: A development team has designed a new application and incorporated best practices for secure coding. Prior to launch, which of the following is the IS auditor's BEST recommendation to mitigate the associated security risk?

Question24: Which of the following is an IS auditor's BEST course of action upon learning that preventive controls have been replaced with detective and corrective controls'

Question25: An IS auditor finds that confidential company data has been inadvertently leaked through social engineering.
The MOST effective way to help prevent a recurrence of this issue is to implement:

Question26: The MAIN reason an organization's incident management procedures should include a post-incident review is to:

Question27: During an audit of a reciprocal disaster recovery agreement between two companies, the IS auditor would be MOST concerned with the:

Question28: While reviewing a hot site, the IS auditor discovers that one type of hardware platform is not installed. The IS auditor should FIRST

Question29: Which procedure provides the GREATEST assurance that corrective action to an audit report has been taken?

Question30: What is the MOST important business concern when an organization is about to migrate a mission-critical application to a virtual environment?

Question31: An IS auditor is assessing an organization's data loss prevention (DLP) solution for protecting intellectual property from insider theft. Which of the following would the auditor consider MOST important for effective data protection?

Question32: Which of the following is BEST addressed when using a timestamp within a digital signature to deliver sensitive financial information?

Question33: The objectives of business process improvement should PRIMARILY include

Question34: An organization has software that is not compliant with data protection requirements. To help ensure that appropriate and relevant data protection controls are implemented in the future, the auditor s BEST course of action would be to:

Question35: The MAJOR reason for segregating test programs from production programs is to:

Question36: Which of the following controls would BEST decrease the exposure if a password is compromised?

Question37: Which of the following is the BEST way to help ensure the security of privacy-related data stored by an organization?

Question38: Which of the following procedures should an IS auditor complete FIRST when evaluating the adequacy of IT key performance indicators (KPIs)?

Question39: Which of the following would BEST prevent data from being orphaned?

Question40: An e-commerce enterprise's disaster recovery (DR) site has 30% less processing capability than the primary site. Based on this information, which of the following presents the GREATEST risk?

Question41: An organization has established hiring policies and procedures designed specifically to ensure network administrators are well qualified. Which type of control is in place?

Question42: During an audit of information security procedures of a large retailer s online store, an IS auditor notes that operating system (OS) patches are automatically deployed upon -. Which of the following should be of GREATEST concern to the auditor?

Question43: Which of the following would be an auditor's GREATEST concern when reviewing data inputs from spreadsheets into the core finance system?

Question44: A large insurance company is about to replace a major financial application. Which of the following is the IS auditor's PRIMARY focus when conducting the pre-implementation review?

Question45: Which of the following is a passive attack on a network?

Question46: An IS auditor is a member of an application development team that is selecting software. Which of the following would impair the auditor's independence?

Question47: Which audit technique provides the GREATEST assurance that incident management procedures are effective?

Question48: A security company and service provider have merged and the CEO has requested one comprehensive set of security policies be developed for the newly formed company. The IS auditor s BEST recommendation would be to:

Question49: A vendor service level agreement (SLA) requires backup to be physically secured. An IS audit of the backup system revealed a number of the backup media were missing. Which of the following should be the auditor's NEXT step?

Question50: An organization transmits large amount of data from one internal system to another. The IS auditor is reviewing quality of the data at the originating point. Which of the following should the auditor verify first?

Question51: Which of the following is MOST influential when defining disaster recovery strategies?

Question52: While reviewing the project plan for a new system prior to go-live, an IS auditor notes that the project team has not documented a fallback plan. Which of the following would be the BEST go-live approach in this situation?

Question53: Which of the following is the MOST important consideration for building resilient systems?

Question54: During an audit of the organization's data privacy policy, the IS auditor identified that only some IT application databases have encryption in place. What should be the auditors FIRST action?

Question55: Which of the following is the PRIMARY benefit of including IT management and staff when conducting control self-assessments (CSAs) within an organization?

Question56: During an audit of identity and access management, an IS auditor finds that the engagement audit plan does not include the testing of controls that regulate access by third parties. Which of the following would be the auditor's BEST course of action?

Question57: During an audit of a payroll system, an IS auditor identifies that two employees share the same bank account.
The auditor is concerned they may be ghost employees. Which of the following should the auditor do NEXT?

Question58: An organization implements a data loss prevention tool as a control to mitigate the risk of sensitive data leaving the organization via electronic mail. Which of the following would provide the BEST indication of adequate control design?

Question59: The maturity level of an organization s problem management support function is optimized when the function

Question60: Which of the following is the BEST physical security solution for granting and restricting access to individuals based on their unique access needs?

Question61: Which of the following would BEST indicate the effectiveness of a security awareness training program?

Question62: Which of the following could be used to evaluate the effectiveness of IT operations?

Question63: Which of the following key performance indicators (KPIs) provides the BEST indication of a security awareness campaign's effectiveness?

Question64: The PRIMARY reason an IS department should analyze past incidents and problems is to:

Question65: An organization recently experienced a phishing attack that resulted in a breach of confidential information.
Which of the following would be MOST relevant for an IS auditor to review when determining the root cause of the incident?

Question66: In a typical SDLC, which group is PRIMARILY responsible for confirming compliance with requirements?

Question67: Which of the following would be the MOST efficient audit approach, given that a compliance-based approach was adopted in the previous year?

Question68: Which of the following is the MOST critical step prior to performing a network penetration test?

Question69: During a vulnerability assessment, an IS auditor finds a high-risk vulnerability in a public-facing web server used to process online customer orders via credit card. The IS auditor could FIRST:

Question70: Which of the following is the BEST approach for performing a business impact analysis (BIA) of a supply-chain management application?

Question71: An organization with high availability resource requirements is selecting a provider for cloud computing.
Which of the following would cause the GREATEST concern to an IS auditor? The provider:

Question72: An IS auditor concludes that a local area network's (LAN's) access security is satisfactory. In reviewing the work, the audit manager should:

Question73: Which of the following is MOST helpful when establishing the authenticity of digital evidence collected from a hard disk?

Question74: During an audit, which of the following would be MOST helpful in establishing a baseline for measuring data quality?

Question75: During a review of an organization's network threat response process. The IS auditor noticed that the majority of alerts were closed without resolution. Management responded that those alerts were unworkable due to lack of actionable intelligence, and therefore the support team is allowed to close them. What is the best way for the auditor to address the situation?

Question76: An internal review reveals an out-of-support human resources system. Which of the following is MOST important to determine when evaluating the associated risk?

Question77: An IS auditor can BEST help management fulfill risk management responsibilities by:

Question78: internal IS auditor recommends that incoming accounts payable payment files be encrypted. Which type of control is the auditor recommending?

Question79: The IS auditor has identified a potential fraud perpetrated by the network administrator. The IS auditor should:

Question80: When auditing the IT governance of an organization planning to outsource a critical financial application to a cloud vendor, the MOST important consideration for the auditor should be:

Question81: Which of the following could be determined by an entity-relationship diagram?

Question82: An organization performs nightly backups but does not have a formal policy. An IS auditor should FIRST

Question83: While planning a security audit, an IS auditor is made aware of a security review carried out by external consultants. It is MOST implement for the auditor to:

Question84: An IS auditor finds that periodic reviews of read-only users for a reporting system are not being performed.
Which of the following should be the IS auditor's NEXT course of action?

Question85: An IS auditor is asked to review a large organization's change management process. Which of the following practices presents the GREATEST risk?

Question86: When engaging services from external auditors, which of the following should be established FIRST7

Question87: An IS auditor finds that firewalls are outdated and not supported by vendors. Which of the following should be the auditor s NEXT course of action?

Question88: Which of the following is MOST important for an IS auditor to consider when determining an appropriate sample size in situations where selecting the entire population is not feasible?

Question89: Since data storage of a critical business application is on a redundant array of inexpensive disks (RAID).
Backup are not considered essential. The IS auditor should recommend proper backup because RAID:

Question90: Requiring that passwords contain a combination of numeric and alphabetic characters is MOST effective against which type of attack?

Question91: The MOST effective method for an IS auditor to determine which controls are functioning in an operating system is to:

Question92: Which of the following would BEST enable an IS auditor to perform an audit that requires testing the full population of data?

Question93: Which of the following controls should be implemented to BEST minimize system downtime for maintenance?

Question94: Which of the following poses the GREATEST risk to the enforceability of networking policies in a virtualized environment?

Question95: An organization has implemented a distributed security administration system to replace the previous centralized one. The IS auditor's GREATEST concern should be that:

Question96: Which of the following should be an IS auditor's FIRST action when assessing the risk associated with unstructured data?

Question97: A region where an organization conducts business has announced changes in privacy legislation. Which of the following should an IS auditor do FIRST to prepare for the changes?

Question98: When an intrusion into an organizations network is detected, which of the foflomng should be performed FIRST?

Question99: Which of the following should be restricted from a network administrator's privileges in an adequately segregated H" environment?

Question100: The objective of using coding standards for systems development is to:

Question101: During an external assessment of network vulnerability, which of the following activities should be performed FIRST?

Question102: Which of the following should be an IS auditor's PRIMARY consideration when evaluating the development and design of a privacy program?

Question103: The BEST way to evaluate a shared control environment is to obtain an assurance report and review which of the following?

Question104: Which of the following should an IS auditor do FIRST when determining whether to employ data analytics in an audit?

Question105: Which of the following is MOST important to ensure that electronic evidence collected during a forensic investigation will be admissible in future legal proceeding?

Question106: What is the purpose of a hypervisor?

Question107: An IS auditor is observing transaction processing and notes that a high-priority update job ran out of sequence.
What is the MOST significant risk from this observation'

Question108: Based on the Guidance of internal audit, an IT steering committee is considering the use of a balanced scorecard to evaluate its project management process. Which of the following is the GREATEST advantage to using this approach?

Question109: Which of the following is MOST important to helping incident response managers quickly and accurately estimate the overall business impact of security incidents?

Question110: During a software acquision review, an IS auditor should recommend that there be a software escrow agreement when:

Question111: Which of the following should be reviewed as part of a data integrity test?

Question112: An IS auditor performing an application development review attends development team meetings. The IS auditor's independence will be compromised if the IS auditor:

Question113: Which of the following is the PRIMARY purpose of documenting and approving an information security policy?

Question114: Which of the following is the GREATEST benefit of implementing an incident management process?

Question115: Which of the following is the PRIMARY responsibility of an information owner?

Question116: Performance monitoring tools report that servers are consistently above the recommended utilization capacity.
Which of the following is the BEST recommendation of the IS auditor?

Question117: An organization s data retention policy states that all data will be backed up, retained for 10 years, and then destroyed. When conducting an audit of the long-term offsite backup program, an IS auditor should:

Question118: The FIRST step in establishing a firewall security policy is to determine the:

Question119: An organization allows its employees to use personal mobile devices for work. Which of the following would BEST maintain information security without compromising employee privacy?

Question120: An IS auditor performs a follow-up audit and learns the approach taken by the auditee to fix the findings differs from the agreed-upon approach confirmed during the last audit. Which of the following should be the auditor's NEXT course of action?

Question121: Which of the following is the GREATEST concern associated with migrating computing resources to a cloud virtualized environment?

Question122: Which of the following is the BEST approach to identify whether a vulnerability is actively being exploited?

Question123: Which of the following should be the MOST important consideration when establishing data classification standards?

Question124: Which of the following is the MOST important factor when an organization is developing information security policies and procedures?

Question125: Which of the following would provide the BEST evidence of successfully completed batch uploads?

Question126: An organization that has suffered a cyber attack is performing a forensic analysis of the affected users' computers Which of the following should be of GREATEST concern for the IS editor reviewing this process?

Question127: Which of the following is the MOST effective mechanism for ensuring that critical IT operational problems are reported to executive management in a timely manner?

Question128: A retirement system verifies that the field for employee status has either a value of A (for active) or R (for retired). This is an example of which type of check?

Question129: Which of the following should be of MOST concern to an IS auditor reviewing an organization's disaster recovery plan (DRP)?

Question130: Which of the following scenarios would enable a forensic investigation?

Question131: Which of the following is the BEST method for uncovering shadow IT within an organization?

Question132: What would be an IS auditors GREATEST concern when using a test environment for an application audit?

Question133: Management has agreed to perform multiple remediation actions in response to an audit issue, including the implementation of a new control. Which of the following is the BEST time for an IS auditor to perform an audit follow-up of this issue?

Question134: When reviewing a disaster recovery plan (DRP) an IS auditor should examine the:

Question135: An organization offers an online information security awareness program to employees on an annual basis.
Which of the following findings from an audit of the program should be the IS auditor's GREATEST concern?

Question136: Which of the following is MOST important for an IS auditor to confirm when reviewing the effectiveness of an incident response program?

Question137: Which of the following indicates the HIGHEST level of maturity for an organization's information systems internal control environment?

Question138: Which of the following is MOST helpful in preventing a systems failure from occurring when an application is replaced using the abrupt changeover technique?

Question139: During a review of an application system, an IS auditor identifies automated controls designed to prevent the entry of duplicate transactions. What is the BEST way to verify that the controls work as designed?

Question140: Which of the following is the MOST effective way to minimize the risk of a SQL injection attack?

Question141: Which of the following is the BEST detective control for a job scheduling process involving data transmission?

Question142: When evaluating the recent implementation of an intrusion detection system (IDS), an IS auditor should be MOST concerned with inappropriate:

Question143: Which of the following would be of MOST concern during an audit of an end-user computing system containing sensitive information?

Question144: Which of the following is the MOST effective control to minimize the risk of cross-site scripting (XSS)?

Question145: MOST critical security weakness of a packet level firewall is that it can be circumvented by:

Question146: The recovery time objective (RTO) is normally determined on the basis of the:

Question147: Which of the following is the BEST indicator that an application system's agreed-upon level of service has been met?

Question148: A start-up company acquiring for its order-taking system is unable to predict the volume of transactions.
Which of the following is MOST important for the company to consider?

Question149: Which of the following approaches would utilize data analytics to facilitate the testing of a new account creation process?

Question150: Which of the following requires a consensus by key stakeholders on IT strategic goals and objectives?

Question151: Which of the following is MOST important to include in an organization's incident response plan to help prevent similar incidents from happening in the future?

Question152: An IS auditor is using data analytics for an accounts payable audit. Which of the following potential risk scenarios will MOST likely be identified using this approach?

Question153: The quality assurance (QA) function should be prevented from

Question154: Which of the following is MOST important for the IS auditor to verify when reviewing the development process of a security policy?

Question155: Which of the following would represent an acceptable test of an organization s business continuity plan?

Question156: The operations team of an organization has reported an IS security attack. Which of the following should be the NEXT step for the security incident response team?

Question157: Loss-site scripting (XSS) attacks are BEST prevented through:

Question158: Which of the following findings should be an IS auditor's GREATEST concern when reviewing an organization's purchase of new IT infrastructure hardware?

Question159: Which of the following is MOST important when an incident may lead to prosecution?

Question160: An organization using instant messaging to communicate with customers can prevent legitimate customers from being impersonated by:

Question161: Which of the following is the BEST indicator of a mature quality management system (QMS)?

Question162: A company uses a standard form to document and approve all changes in production programs. To ensure that the forms are properly authorized, which of the following is the MOST effective sampling method?

Question163: Which of the following provides the BEST audit evidence that a firewall is configured in compliance with the organization's security policy?

Question164: During a review of system access, an IS auditor notes that an employee who has recently changed roles within the organization still has previous access rights. The auditor s NEXT step should be to:

Question165: When evaluating whether the expected benefits of a project have been achieved, it is MOST important for an IS auditor to review:

Question166: A company has implemented an IT segregation of duties policy In a role-based environment, which of the following roles may be assigned to an application developer?

Question167: Which type of control is being implemented when a biometric access device is installed at the entrance to a facility?

Question168: An IS auditor finds that a company is using a payroll provider hosted in a foreign country Of the following the MOST important audit consideration is whether the provider s operations;

Question169: Which of the following is the BEST time for an IS auditor to perform a post-implementation review?

Question170: Which of the following tasks should be performed during an organization's business continuity plan (BCP) test?

Question171: Which of the following is MOST likely to result from compliance testing?

Question172: Which of the following should an IS auditor be MOST concerned with when a system uses ratio frequency identification (RFID)?

Question173: During a review of a production schedule, an IS auditor observes that a staff member is not complying with mandatory operational procedures-The auditor's NEXT step should be to:

Question174: Which of the following is the MOST significant risk associated with the use of visualization?

Question175: The MOST important reason for documenting all aspects of a digital forensic investigation is that documentation:

Question176: Which of the following is the MOST important consideration when planning a penetration test for a financial management system?

Question177: Buffer overflow in an Internet environment is of particular concern to the IS auditor because it can:

Question178: Which of the following would help determine the maturity of an information security awareness program?

Question179: Which of the following factors will BEST promote effective information security management?

Question180: Which of the following audit procedures would be MOST conclusive in evaluating the effectiveness of an e-commerce application system's edit routine?

Question181: Which of the following controls MOST effectively reduces the risk associated with use of instant messaging (IM) in the workplace?

Question182: Which of the following would be MOST important for an IS auditor to review during an audit of an automated continuous monitoring process being used by the finance department.

Question183: A typical network architecture used for e-commerce, a load balancer is normally found between the:

Question184: During a network security review the system log indicates an unusually high number of unsuccessful login attempts Which of the following sampling techniques is MOST appropriate for selecting a sample of user IDs for further investigation?

Question185: When conducting a post implementation review which of the following is the BEST way to determine whether the value from an IT project has been achieved?

Question186: During a review of an insurance company s claims system, the IS auditor learns that claims for specific medical procedures are acceptable only from females This is an example of a:

Question187: Which of the following should be an IS auditor's PRIMARY consideration when reviewing a project to outsource data center hosting services?

Question188: Which of the following will BEST protect the confidentiality of data stored on the hard drive of a laptop computer?

Question189: An IS auditor performing an audit of backup procedures observes that backup tapes are picked up weekly and stored offsite at a deed party hosting faculty. Which of the following recommendations would be the BEST way to maintain data integrity during transport?

Question190: Which of the following should an IS auditor recommend as MOST critical to an effective performance improvement process for IT services?

Question191: select a sample for testing, which must include the 80 largest client balances and a random sample of the rest, the IS auditor should recommend:

Question192: A database administrator (DBA) extracts a user listing for an auditor as testing evidence. Which of the following will provide the GREATEST assurance that the user listing is reliable'

Question193: During the implementation of an upgraded enterprise resource planning (ERP) system, which of the following is the MOST important consideration foe a go-live decision?

Question194: The CIO of an organization is concerned that the information security policies may not be comprehensive.
Which of the following should an IS auditor recommend be performed FIRST?

Question195: An organization wants to reuse company-provided smartphones collected from staff leaving the organization.
Which of the following would be the BEST recommendation?

Question196: An organization has agreed to perform remediation related to high-risk audit findings. The remediation process involves a complex reorganization of user roles as well as the Implementation of several compensating controls that may not be completed within the next audit cycle Which of the following is the BEST way for an IS auditor to follow up on their activities?

Question197: During an audit, the client learns that the IS auditor has recently completed a similar security review at a competitor. The client inquires about the competitor's audit results. What is the BEST way for the auditor to address this inquiry?

Question198: A legacy application is running on an operating system that is no longer supported by vendor, if the organization continues to use the current application, which of the application should be the IS auditor's GREATEST concern?

Question199: Which of the following is the BEST approach to help ensure evidence from a computer forensics investigation is legally admissible?

Question200: An organization is considering outsourcing the processing of customer insurance claims. An IS auditor notes that customer data will be sent offshore for processing. Which of the following would be the BEST way to address the risk of exposing customer data?

Question201: A CIO has asked an IS to implement several security controls for an organization's IT process and system. The auditor should:

Question202: To ensure efficient and economic use of limited resources in supporting a local area network (LAN) infrastructure, it is advisable to:

Question203: An IS auditor would be concerned if the quality assurance (QA) function were found to be performing which of the following roles?

Question204: Which of the following is the KST source of information for assessing the effectiveness of IT process monitoring?

Question205: An organization's plans to implement a virtualization strategy enabling multiple operating systems on a single host. Which of the following should be the GREATEST concern with this strategy?

Question206: The grants management system is used to calculate grant payments. Once per day, a batch interface extracts grant amounts and payee details from this system for import into the once system so payments can be made overnight Which of the following controls provides the GREATEST assurance of the accuracy and completeness of the imported payment

Question207: Which of the following is MOST likely to be included in a post-implementation review?

Question208: An IS auditor learns that after each scheduled batch process runs, management performs a reconciliation between upstream and downstream data. Which of the following is MOST important for the auditor to investigate?

Question209: Which of the following is the MOST important process to ensure planned IT system changes are completed in an efficient manner?

Question210: A disk management system's PRIMARY function is to:

Question211: An IS auditor has been asked to advise on the design and implementation of IT management best practices Which of the following actions would impair the auditor's independence?

Question212: A technology service organization has recently acquired a new subsidiary. What should be the IS auditor's NEXT course of action when considering the impact on the development of the IT audit plan?

Question213: An employee transfers from an organization's risk management department to become the lead IS auditor.
While in the risk management department, the employee helped developed the key performance indicators (KPIs) now used by the organization. Which of the following would pose the GREATEST threat to the independence of this auditor?

Question214: An organization has recently converted its infrastructure to a virtualized environment. The GREATEST benefit related to disaster recovery is that virtualized servers:

Question215: Which of the following is the MOST effective way for an IS auditor to identify unauthorized changes to the production state of a critical business application?

Question216: An organization using instant messaging to communicate with customers prevent legitimate customers from being impersonated by:

Question217: Which of the following is the BEST guidance from an IS auditor to an organization planning an initiative to improve the effectiveness of its IT processes?

Question218: An organization is replacing a mission-critical system. Which of the following is the BEST implementation strategy to mitigate and reduce the risk of system failure?

Question219: An IS auditor has performed an agreed-upon procedures engagement for the organization's IT steering committee. Which of the following would be the MOST important element to include in the report?

Question220: An employee loses a mobile device resulting in loss of sensitive corporate data. Which of the following would have BEST prevented data leakage?

Question221: Following a breach, what is the BEST source to determine the maximum amount of time before customers must be notified that their personal information may have been compromised?

Question222: An IS auditor is involved in the user testing phase of a development project. The developers wish to use a copy of a peak volume transaction file from the production process to should that the development can cope with the required volume What is the auditor s PRIMARY concern?

Question223: Which of the following is MOST important to the effective management of an end user developed application?

Question224: Which of the following BEST ensures that only authorized software is moved into a production environment?

Question225: Which of the following is the FIRST step when conducting a business impact analysis?

Question226: Which of the following presents the GREATEST concern when implementing data flow across borders?

Question227: To ensure confidentiality through the use of asymmetric encryption, a message is encrypted with which of the following?

Question228: An IS auditor has observed gaps in the data available to the organization for detecting incidents. Which of the following would be the BEST recommendation to improve the organization's security incident response capability?

Question229: Which of the following is the MOST effective control to mitigate unintentional misuse of authorised access?

Question230: Which of the following would be MOST critical for an IS auditor to look for when evaluating fire precautions in a manned data center located in the upper floor of a multi-story building?

Question231: An IS auditor has been asked to perform a post-implementation assessment of a new corporate human resources (HR) system. Which of the following control areas would be OST important to review for the protection of employee information?

Question232: Which of the following would BEST assist senior management in evaluating IT performance as well as the alignment between corporate and IT strategic objectives?

Question233: A company laptop has been stolen and all photos on the laptop have been published on social media. Which of the following is the IS auditor's BEST course of action?

Question234: Which of the following could an IS auditor recommend to improve the estimated resources required in system development?

Question235: Which of the following projects would be MOST important to review in an audit of an organizations financial statements?

Question236: An organization has implemented an automated match between purchase orders, goods receipts, and invoices.
Which of the following risks will this control BEST mitigate?

Question237: A complex IS environment which of the following tasks should be performed by the data owner?

Question238: The MOST efficient way to confirm that an ERP system being implemented satisfies business expectations is to utilize which of the following types of testing?

Question239: Which of the following human resources management practices BEST leads to the detection of fraudulent activity?

Question240: Which of the following control? MOST efficiently ensures that orders transmitted from a sales office to a production warehouse are received accurately and completely?

Question241: Which of the following activities is MOST important in determining whether a test of a disaster recovery plan (DRP) has been successful?
Analyzing whether predetermined test objectives were met

Question242: Which of the following should be of GREATEST concern to an IS auditor when evaluating a new system's production readiness?

Question243: An IT service desk has recorded several incidents related to server downtime following the failure of a network time protocol (NTP) server. Which of the following is the BEST methodology to help identify the root cause?

Question244: An organization has installed blade server technology in its data server. To determine whether higher cooling demands are maintained, which of the following should the IS auditor review?

Question245: Which of the following controls will BEST ensure that the board of directors receives sufficient information about IT?

Question246: Which of the following is MOST important for the successful completion of a new application system?

Question247: Which of the following would BEST provide executive management with current information on IT related costs and IT performance indicators?

Question248: IS management has decided to replace the current single-server-based local area network (LAN) with three interconnected servers running different operating systems. Existing applications and data on the old server have been exclusively distributed on the new servers. This will MOST likely result in:

Question249: A user of a telephone banking system has forgotten his personal identification number (PIN), after the user has been authenticated, the BEST method of issuing a new pin is to have:

Question250: Which of the following is the MOST effective way to assess whether an outsourcer's controls are following the service level agreement (SLA)?

Question251: The PRIMARY benefit of using secure shell (SSH) to access a server on a network is that it:

Question252: An accounting department uses a spreadsheet to calculate sensitive financial transactions. Which of the following is the MOST important control for maintaining the security of data in the spreadsheet?

Question253: Overall responsibility for approving logical access rights to information assets should reside with the:

Question254: When migrating critical systems to a cloud provider, the GREATEST data security concern for an organization would be that data from different clients may be:

Question255: In a follow-up audit, an IS auditor notes that management has addressed the original findings in a different way than originally agreed upon. The auditor should FIRST:

Question256: Which of the following is the MOST effective control for a utility program?

Question257: Which of the following is the MOST important consideration when establishing vulnerability scanning on critical IT infrastructure?

Question258: mission-critical applications with a low recovery time objective (RTO). which of the following is the BEST backup strategy?

Question259: An IS auditor finds multiple situations where the help desk resolved security incidents without notifying IT security as required by policy. Which of the following is the BEST audit recommendation?

Question260: During a help desk review, an IS auditor determines the call abandonment rate exceeds agreed-upon service levels. What conclusion can be drawn from this finding?

Question261: Which of the following is MOST likely to be prevented by a firewall connected to the Internet?

Question262: In reviewing the project timeline for a significant application software development project the IS auditor notes that no time was allocated for the design and performance of program code unit tests. Which of the following should (he auditor recommend?

Question263: Which of the following management decisions presents the GREATEST risk associated with data leakage?

Question264: Inherent risk rating are determined by assessing the impact and likelihood of a threat or vulnerability occurring:

Question265: An IS auditor has found that an organization is unable to add new servers on demand in a cost-efficient manner Which of the following is the auditor s BEST recommendation?

Question266: An IS auditor has found that a vendor has gone out of business and the escrow has an older version of the source code What is the auditor's BEST recommendation for the organization?

Question267: Which of the following should be of MOST concern to an IS auditor during the review of a quality management system?

Question268: The information security function in a large organization is MOST effective when:

Question269: Which of the following procedures would BEST contribute to the reliability of information in a data warehouse?

Question270: A bank is relocating its servers to a vendor that provides data center hosting services to multiple clients. Which of the following controls would restrict other clients from physical access to the bank servers?