EMT Practice Test

1. Question Content...


Question List

Question1: Which of the following observations noted during a review of the organization s social media practices should be of MOST concern to the IS auditor?

Question2: internal IS auditor recommends that incoming accounts payable payment files be encrypted. Which type of control is the auditor recommending?

Question3: A month after a company purchased and implemented system and performance monitoring software reports were too large and therefore were not reviewed or acted upon The MOST effective plan of action would be to

Question4: To ensure the integrity of a recovered database, which of the following would be MOST useful?

Question5: An organization wants to replace its suite of legacy applications with a new, in-house developed solution.
Which of the following is the BEST way to address concerns associated with migration of all mission-critical business functionality?

Question6: Which of the following will MOST likely compromise the control provided by a digital signature created using RSA encryption?

Question7: An internal audit department recently established a quality assurance (QA) program as part of its overall audit program. Which of the following activities is MOST important to include as part of the QA program requirements?

Question8: A user of a telephone banking system has forgotten his personal identification number (PIN), after the user has been authenticated, the BEST method of issuing a new pin is to have:

Question9: The BEST way to preserve data integrity through all phases of application containerization is to ensure which of the following?

Question10: Which of the following is the GREATEST advantage of vulnerability scanning over penetration testing'?

Question11: Which of the following would provide an IS auditor with the MOST assurance when auditing the implementation of a new application system?

Question12: When reviewing backup policies, an IS auditor MUST verify that backup intervals of critical systems do not exceed which of the following?

Question13: What information within change records would provide an IS auditor with the MOST assurance that configuration management is operating effectively?

Question14: Which of the following is the MOST effective means of helping management and the IT strategy committee to monitor IT performance?

Question15: An organization transmits large amount of data from one internal system to another. The IS auditor is reviewing quality of the data at the originating point. Which of the following should the auditor verify first?

Question16: An audit has identified that business units have purchased cloud-based applications without ITs support. What is [he GREATEST risk associated with this situation?

Question17: Which of the following is an objective of data transfer controls?

Question18: Which of the following is the MOST important reason to use statistical sampling?

Question19: An IS auditor is assigned to review the development of a specific application. Which of the following would be the MOST significant step following the feasibility study?

Question20: An IS auditor is planning on utilizing attribute sampling to determine the error rate for health care claims processed. Which of the following factors will cause the sample size to decrease?

Question21: The objective of a vulnerability identification step in a risk assessment process is to.

Question22: Which of the following is the BEST way for an IS auditor to maintain visibility of a new system implementation project when faced with resource limitations

Question23: An IS auditor is reviewing database log settings and notices that only INSERT and DELETE operations are being monitored in the database. What is the MOST significant risk?

Question24: Which of the following strategies BEST optimizes data storage without compromising data retention practices?

Question25: The BEST way to validate whether a malicious act has actually occurred in an application is to review.

Question26: To protect information assets, which of the following should be done FIRST?

Question27: Which of the following provides the MOST assurance over the completeness and accuracy of loan application processing with respect to the implementation of a new system?

Question28: Which of the following should the IS auditor do FIRST to ensure data transfer integrity for Internet of Things (loT) devices?

Question29: In assessing the priority given to systems covered in an organization's business continuity plan (BCP), an IS auditor should FIRST:

Question30: In a high-volume, real-time system, the MOST effective technique by which to continuously monitor and analyze transaction processing is:

Question31: An organization has decided to implement a third-party system in its existing IT environment Which of the following is MOST important for the IS auditor to confirm?

Question32: When planning an end-user computing (EUC) audit, it is MOST important for the IS auditor to:

Question33: Which of the following is the PRIMARY protocol for protecting outbound content from tampering and eavesdropping?

Question34: Which of the following will BEST help to ensure that an in-house application in the production environment is current?

Question35: An airlines online booking system uses an automated script that checks whether fares are within the defined threshold of what is reasonable before the fares are displayed on the website. Which type of control is in place?

Question36: Which of the following would an IS auditor PRIMARILY review to understand key drivers of a project?

Question37: Which of the following observations should be of GREATEST concern to an IS auditor reviewing a hosted virtualized environment where each guest operating system (OS) is r

Question38: During an IT operations audit multiple unencrypted backup tapes containing sensitive credit card information cannot be found Which of the following presents the GREATEST risk to the organization?

Question39: An IS audit manager has been asked to perform a quality review on an audit that the same manager also supervised. Which of the following is (he manager's BEST response to this situation?

Question40: Which of the following observations should be of GREATEST concern to an IS auditor reviewing a large organization's virtualization environment?

Question41: Which of the following is the MOST reliable network connection medium in an environment where there is strong electromagnetic interface?

Question42: The CIO of an organization is concerned that the information security policies may not be comprehensive.
Which of the following should an IS auditor recommend be performed FIRST?

Question43: When preparing to evaluate the effectiveness of an organizations IT strategy, an IS auditor should FIRST review;

Question44: When reviewing an organization's data protection practices, an IS auditor should be MOST concerned with a lack of:

Question45: Which of the following should an IS auditor expect to find when reviewing IT security policy?

Question46: Which of the following is the GREATEST benefit of utilizing data analytics?

Question47: An IS auditor finds that firewalls are outdated and not supported by vendors. Which of the following should be the auditor s NEXT course of action?

Question48: During an audit of an access control system an IS auditor finds that RFID card readers are not connected via the network to a central server Which of the following is the GREATEST risk associated with this finding?

Question49: Which of the following should be an IS auditor's PRIMARY consideration when evaluating the development and design of a privacy program?

Question50: Which of the following BEST demonstrates the degree of alignment between IT and business strategy?

Question51: A new privacy regulation requires a customer's privacy information to be deleted within 72 hours, if requested.
Which of the following would be an IS auditor's GREATEST concern regarding compliance to this regulation?

Question52: Which of the following is the BEST indicator of the effectiveness of signature-based intrusion detection systems (IDSs)?

Question53: An IS auditor finds that the process for removing access for terminated employee is not documented. What is the MOST significant risk from this observation?

Question54: Which of the following is MOST appropriate for measuring a batch processing application's system performance over time?

Question55: Which of the following situations would impair the independence of an IS auditor involved in a software development project?

Question56: A financial institution is launching a mobile banking service utilizing multi-factor authentication. This access control is an example of which of the following?

Question57: Which of the following is the BEST way for an IS auditor to reduce sampling risk when performing audit sampling to verify the adequacy of an organization's internal controls?

Question58: Which of the following is the PRIMARY advantage of using virtualization technology for corporate applications?

Question59: Which of the following is an example of a preventive control?

Question60: Which of the following should an IS auditor validate FIRST when reviewing the security of an organization's IT infrastructure as it relates to Internet of Things (loT) devices?

Question61: A financial institution has a system interface that is used by its branches to obtain applicable currency exchange rates when processing transactions Which of the following should be the PRIMARY control objective for maintaining the security of the system interface?

Question62: During a security audit, an IS auditor is tasked with reviewing log entries obtained from an enterprise intrusion prevention system (IPS). Which type of risk would be associated with the potential for the auditor to miss a sequence of logged events that could indicate an error in the IPS configuration?

Question63: To ensure efficient and economic use of limited resources in supporting a local area network (LAN) infrastructure, it is advisable to:

Question64: Which of the following observations should be of GREATEST concern to an IS auditor reviewing a large organization's IT steering committee?

Question65: Which of the following is the BEST guidance from an IS auditor to an organization planning an initiative to improve the effectiveness of its IT processes?

Question66: When reviewing an organization's information security policies, an IS auditor should venfy that the policies have been defined PRIMARILY on the basis of

Question67: An IS auditor is reviewing a recent security incident and is seeking information about the approval of a recent modification to a database system's security settings Where would the auditor MOST likely find this information?

Question68: Which of the following technologies has the SMALLEST maximum range for data transmission between devices?

Question69: During a routine check, a system administrator identifies unusual activity indicating an intruder within a firewall. Which of the following controls has MOST likely been compromised?

Question70: Which of the following application input controls would MOST likely detect data input errors in the customer account number field during the processing of an accounts receivable transaction?

Question71: An internal audit department recently established a quality assurance (QA) program. Which of the following activities is MOST important to include as part of the OA program requirements?

Question72: During which phase of the incident management life cycle should metrics such as "mean time to incident discovery" and "cost of recovery" be reported?

Question73: An IS auditor is testing employee access to a large financial system and must select a sample from the current employee list provided by the auditee. Which of the following is the MOST reliable sample source to support this testing1?

Question74: Which of the following issues identified during a postmortem analysis of the IT security incident response process should be of GREATEST concern?

Question75: To develop a robust data security program, the FIRST course of action should be to:

Question76: Which of the following focus areas is a responsibility of IT management rather than IT governance?

Question77: An organization developed a comprehensive three-year IT strategic plan Halfway into the plan a major legislative change impacting the organization is enacted Which oi the following should be management's NEXT course of action?

Question78: An IS auditor has found that an organization is unable to add new servers on demand in a cost-efficient manner Which of the following is the auditor s BEST recommendation?

Question79: An IS auditor is evaluating a virtual server environment and learns that the production server, development server, and management console are housed in the same physical host. What should be the auditor's PRIMARY concern?

Question80: Which of the following is the GREATEST concern when using a cold backup site?

Question81: Which of the following clauses is MOST important to include in a contract to help maintain data privacy in the event a Platform as a Service (PaaS) provider becomes financially insolvent?

Question82: The risk of communication failure in an e-commerce environment is BEST minimized through the use of

Question83: In which phase of penetration testing would host detection and domain name system (DNS) interrogation be performed?

Question84: When determining which IS audits to conduct during the upcoming year, internal audit has received a request from management for multiple audits of the contract division due to fraud findings during the prior year Which of the following is the BEST basis for selecting the audits to be performed?

Question85: Which of the following BEST determines if a batch update job was successfully executed?

Question86: The BEST way to prevent fraudulent payments is to implement segregation of duties between payment processing and:

Question87: What is the BEST control to address SOL injection vulnerabilities?

Question88: The information security function in a large organization is MOST effective when:

Question89: An IS auditor is reviewing an enterprise database platform. The review involves statistical methods. Benford analysis, and duplicate checks. Which of the following computer-assisted audit technique (CAAT) tools would be MOST useful for this review''

Question90: An IS auditor is reviewing the change management process in a large IT service organization. Which of the following observations would be the GREATEST concern?

Question91: Which of the following is the BEST source of information for an IS auditor when planning an audit of a business application's controls?

Question92: Due to system limitations, segregation of duties (SoD) cannot be enforced in an accounts payable system.
Which of the following is the IS auditor s BEST recommendation for a compensating control?

Question93: An IS auditor is assessing an organization's data loss prevention (DLP) solution for protecting intellectual property from insider theft. Which of the following would the auditor consider MOST important for effective data protection?

Question94: An IS auditor notes that IT and the business have different opinions on the availability of their application servers Which of the following should the IS auditor review FIRST in order to understand the problem?

Question95: Which of the following is an IS auditor's BEST course of action upon learning that preventive controls have been replaced with detective and corrective controls'

Question96: An organization s audit charter PRIMARILY:

Question97: Which of the following physical controls will MOST effectively prevent breaches of computer room security?

Question98: Which of the following is the BEST way to achieve high availability and fault tolerance for an e-business system?

Question99: Which of the following should an IS auditor expect to see in a network vulnerability assessment?

Question100: An organization decides to establish a formal incident response capability with clear roles and responsibilities facilitating centralized reporting of security incidents. Which type of control is being implemented?

Question101: During a privileged access review, an IS auditor observes many help desk employees have privileges within systems not required for their job functions. Implementing which of the following would have prevented this situation?

Question102: During a review, an IS auditor notes that an organization's marketing department has purchased a cloud-based software application without following the procurement process. What should the auditor do FIRST?

Question103: While conducting a review of project plans related to a new software development, an IS auditor finds the project initiation document (PID) is incomplete. What is the BEST way for the auditor to proceed?

Question104: During a review of the IT strategic plan, an IS auditor finds several IT initiatives focused on delivering new systems and technology are not aligned with the organization's strategy. Which of the following would be the IS auditor's BEST recommendation?

Question105: The MOST important function of a business continuity plan (BCP) is to.

Question106: Which of the following should be of MOST concern to an IS auditor during the review of a quality management system?

Question107: Which of the following is the BEST reason to utilize blockchain technology to record accounting transactions?

Question108: When evaluating a protect immediately prior to implementation, which of the following would provide the BEST evidence that the system has the required functionality?

Question109: Following the discovery of inaccuracies in a data warehouse, an organization has implemented data profiling, cleansing, and handling filters to enhance the quality of data obtained from c

Question110: Which of the following is a corrective control that reduces the impact of a threat event?

Question111: Which of the following should MOST concern an IS auditor reviewing an intrusion detection system (IDS)?

Question112: Which of the following is the BEST recommendation to prevent fraudulent electronic funds transfers by accounts payable employees?

Question113: When evaluating database management practices, which of the following controls would MOST effectively support data integrity?

Question114: Which of the following is the MOST effective way to identify anomalous transactions when performing a payroll fraud audit?

Question115: An application used at a financial services organization transmits confidential customer data to downstream applications using a batch process. Which of the following controls would protect this information?

Question116: An audit of the quality management system (QMS) begins with an evaluation of the:

Question117: Which of the following is the role of audit leadership in ensuring the quality of audit and engagement performance?

Question118: Which of the following should be an IS auditor's GREATEST concern when a security audit reveals the organization's vulnerability assessment approach is limited to running a vulnerability scanner on its network?

Question119: Which of the following BEST minimizes performance degradation of servers used to authenticate users of an e-commerce website?

Question120: The GREATEST risk of database denormalization is:

Question121: Which of the following practices BEST ensures that archived electronic information of permanent importance is accessible over time?

Question122: When performing a post-implementation review, the adequacy of the data conversion effort would BEST be evaluated by performing a thorough review of the:

Question123: Which of the following is MOST helpful for an IS auditor to review when determining the appropriateness of controls relevant to a specific audit area?

Question124: Which of the following BEST ensures the quality and integrity of test procedures used in audit analytics?

Question125: During a review of operations, it is noted that during a batch update, an error was detected and the database initiated a roll-back. An IT operator stopped the roll-back and re-initiated the update. What should the operator have done PRIOR to re-initiating the update?

Question126: Which of the following findings should be of GREATEST concern to an IS auditor reviewing the effectiveness of an organization's problem management practices?

Question127: Which of the following BEST helps to identify errors during data transfer?

Question128: Which of the following is the MOST effective control to ensure electronic records beyond their retention periods are deleted from IT systems?

Question129: Which of the following is the BEST way to detect system security breaches?

Question130: Which of the following is the PRIMARY concern when negotiating a contract for a hot site?

Question131: Which of the following is MOST important for an IS auditor to review when evaluating the effectiveness of an organization's incident response process?

Question132: When a firewall is subjected to a probing attack, the MOST appropriate first response is for the firewall to:

Question133: During the implementation of an upgraded enterprise resource planning (ERP) system, which of the following is the MOST important consideration for a go-live decision?

Question134: After delivering an audit report, the audit manager discovers that evidence was overlooked during the audit This evidence indicates that a procedural control may have failed and could contradict a conclusion of the audit. Which of the following risks is MOST affected by the oversight?

Question135: A security company and service provider have merged and the CEO has requested one comprehensive set of security policies be developed for the newly formed company. The IS auditor s BEST recommendation would be to:

Question136: An IS auditor is reviewing a banking mobile application that allows end users to perform financial transactions. Which of the following poses a security risk to the organization?

Question137: Which of the following would BEST enable an IS auditor to perform an audit that requires testing the full population of data?

Question138: Which of the following factors constitutes a strength in regard to the use of a disaster recovery planning reciprocal agreement?

Question139: Which of the following areas of responsibility would cause the GREATEST segregation of duties conflict if the individual who performs the related tasks also has approval authority?

Question140: An IS auditor reviewing the use of encryption finds that the symmetric key is sent by an email message between the parties. Which of the following audit responses is correct in this situation?

Question141: An IS auditor finds that a document related to a client has been leaked. Which of the following should be the auditor's NEXT step?

Question142: Which of the following BEST enables alignment of IT with business objectives?

Question143: A multinational organization is integrating its existing payroll system with a human resource information system. Which of the following should be of GREATEST concern to the IS auditor?

Question144: Which of the following would be of GREATEST concern to an IS auditor evaluating governance over open source development components?

Question145: Which of the following is the MOST effective control for protecting the confidentiality and integrity of data stored unencrypted on virtual machines?

Question146: Which of the following weaknesses would have the GREATEST impact on the effective operation of a perimeter firewall?

Question147: Which of the following should be the FIRST step to help ensure the necessary regulatory requirements are addressed in an organization's cross-border data protection policy?

Question148: Which of the following is MOST likely to be included in computer operating procedures in a large data center?

Question149: An IT organization's incident response plan is which type of control?

Question150: What is BEST for an IS auditor to review when assessing the effectiveness of changes recently made to processes and tools related to an organization's business continuity plan (BCP)?

Question151: An IS auditor reviewed the business case for a proposed investment to virtualize an organization's server infrastructure. Which of the following is MOST likely to be included among the benefits in the project proposal?

Question152: During a post-implementation review, a step in determining whether a project met user requirements is to review the:

Question153: An IS audit reveals an organization's IT department reports any deviations from its security standards to an internal IT risk committee involving IT senior management. Which of the following should be the IS auditor's GREATEST concern?

Question154: A large insurance company is about to replace a major financial application. Which of the following is the IS auditor's PRIMARY focus when conducting the pre-implementation review?

Question155: Which of the following is MOST important for an IS auditor to verify when evaluating an organization's firewall?

Question156: Which of the following is MOST important to ensure when planning a black box penetration test?

Question157: Which of the following should be included in emergency change control procedures?

Question158: Management has decided to include a compliance manager in the approval process for a new business that may require changes to tie IT infrastructure. Which of the following is the GREATEST benefit of this approach?

Question159: Which of the following is the BEST way to ensure that business continuity plans (BCPs) will work effectively in the event of a major disaster?

Question160: The activation of a pandemic response plan has resulted in a remote workforce situation. Which of the following technologies poses the GREATEST risk to data confidentiality?

Question161: Within the context of an IT-related governance framework, which type of organization would be considered MOST mature?

Question162: In a situation where the recovery point objective (RPO) is 0 for an online transaction processing system, which of the following is MOST important for an IS auditor to verify?

Question163: Data analytics tools and techniques are MOST helpful to an IS auditor during which of the following audit activities?

Question164: The decision to accept an IT control risk related to data quality should be the responsibility of the:

Question165: During an audit of a financial application, it was determined thai many terminated users' accounts were not disabled. Which of the following should be the IS auditors NEXT step?

Question166: During a disaster recovery audit, an IS auditor finds that a business impact analysis (BIA) has not been performed The auditor should FIRST.

Question167: An organization processing high volumes of financial transactions has implemented log file analysis on a central log server to continuously monitor compliance with its fraud policy. Which of the following poses the GREATEST risk to this control?

Question168: An organization is developing a web portal using some external components. Which of the following should be of MOST concern to an IS auditor?

Question169: Which of the following findings should be of GREATEST concern to an IS auditor conducting a forensic analysis following incidents of suspicious activities on a server?

Question170: Which of the following human resources management practices BEST leads to the detection of fraudulent activity?

Question171: Which of the following MOST efficiently protects computer equipment against short-term reductions in electrical power?

Question172: An organization's business function wants to capture customer data and must comply with global data protection regulations. Which of the following should be considered FIRST?

Question173: An organization recently implemented a data loss prevention (DLP) solution to control data in transit. Which of the following would be the GREATEST risk related to the DLP implementation?

Question174: An IS auditor is evaluating the risk associated with moving from one database management system (DBMS) to another. Which of the following would be MOST helpful to ensure the integrity of the system throughout the change?

Question175: When aligning IT projects with organizational objectives, it is MOST important to ensure that the:

Question176: Which of the following is necessary for effective risk management in IT governance?

Question177: Which of the following is the PRIMARY reason an IS auditor should use an IT-related framework as a basis for scoping and structuring an audit?

Question178: An IS auditor's PRIMARY objective when examining problem reports should be to help ensure:

Question179: Which of the following findings should be of GREATEST concern to an IS auditor reviewing system deployment tools for a critical enterprise application system?

Question180: Which of the following is a corrective control?

Question181: A manager identifies active privileged accounts belonging to staff who have left the organization. Which of the following is the threat actor In this scenario?

Question182: Which of the following is the PRIMARY objective of implementing privacy-related controls within an organization"?

Question183: An IS auditor notes that application super-user activity was not recorded in system logs. What is the auditor's BEST course of action?

Question184: Which of the following would be MOST helpful in ensuring security procedures are followed by employees in a multinational organization?

Question185: Which of the following is the MOST likely reason an organization would use Platform as a Service (PaaS)?

Question186: One advantage of monetary unit sampling is the fact that:

Question187: Which of the following would be a result of utilizing a top-down maturity model process?

Question188: Which of the following control testing approaches is BEST used to evaluate a control's ongoing effectiveness by comparing processing results to independently calculated data?

Question189: A vulnerability in which of the following virtual systems would be of GREATEST concern to the IS auditor?

Question190: Which of the following is the GREATEST benefit of implementing an incident management process?

Question191: An organization that has suffered a cyber attack is performing a forensic analysis of the affected users' computers Which of the following should be of GREATEST concern for the IS editor reviewing this process?

Question192: Which of the following is the client organization's responsibility in a Software as a Service (SaaS) environment?

Question193: Which of the following BEST enables an IS auditor to detect incorrect exchange rates applied to outward remittance transactions at a financial institution?

Question194: When reviewing a project to replace multiple manual data entry systems with an artificial intelligence (Al) system, the IS auditor should be MOST concerned with the impact At will have on:

Question195: Which of the following should be the PRIMARY audience for a third-party technical security assessment report?

Question196: Which of the following is an IS auditor s GREATEST concern when an organization does not regularly update software on individual workstations in the internal environment?

Question197: When evaluating the ability of a disaster recovery plan (DRP) to enable the recovery of IT processing capabilities, it is MOST important for the IS auditor to verify the plan is:

Question198: To help ensure the accuracy and completeness of end-user computing output it is MOST important to include strong:

Question199: An IS auditor is following up on prior period items and finds management did not address an audit finding.
Which of the following should be the IS auditor's NEXT course of action?

Question200: Which type of control is being implemented when a biometric access device is installed at the entrance to a facility?

Question201: An organization's IT security policy states that user ID's must uniquely identify individual's and that user should not disclose their passwords. An IS auditor discovers that several generic user ID's are being used.
Which of the following is the MOST appropriate course of action for the auditor?