Question1: Which of the following is MOST likely to be detected by an IS auditor applying data analytic techniques?
Question2: Compared to developing a system in-house, acquiring a software package means that the need for testing by end users is:
Question3: A business unit cannot achieve desired segregation of duties between operations and programming due to size constraints. Which of the following is MOST important for the IS auditor to identify*?
Question4: Which of the following communication modes should be of GREATEST concern to an IS auditor evaluating end user networking?
Question5: An IS auditor has assessed a payroll service provider's security policy and finds significant topics are missing. Which of the following is the auditor's BEST course of action?
Question6: Which of the following is MOST important to verify when implementing an organization's information security program?
Question7: Which of the following should be defined in an audit chatter?
Question8: An IS auditor conducting a follow-up audit learns that previously funded recommendations have not been implemented due to recent budget restrictions. Which of the following should the
Question9: An organization is experiencing a large number of phishing attacks targeting employees and executives following a press release announcing an acquisition Which of the following would provide the BEST defense against these attacks?
Question10: Which of the following provides the MOST assurance that new information systems are ready for migration to the production environment?
Question11: During a review of the IT strategic plan, an IS auditor finds several IT initiatives focused on delivering new systems and technology are not aligned with the organization's strategy. Which of the following would be the IS auditor's BEST recommendation?
Question12: Which of the following is the BEST way to loster continuous improvement of IS audit processes and practices?
Question13: Which of the following is the BEST way to mitigate the risk associated with malicious changes to binary code during the software development life cycle (SDLC)?
Question14: Which of the following is the GREATEST security risk associated with data migration from a legacy human resources (HR) system to a cloud-based system''
Question15: Which of the following backup schemes is the BEST option when storage media is limited?
Question16: IS management has recently disabled certain referential integrity controls in the database management system (DBMS) software to provide users increased query performance Which of the following controls win MOST effectively compensate for the lack of referential integrity?
Question17: An organization's security policy mandates that all new employees must receive appropriate security awareness training. Which of the following metrics would BEST assure compliance with this policy?
Question18: During which phase of the incident management life cycle should metrics such as "mean time to incident discovery" and "cost of recovery" be reported?
Question19: Which of the following is the MOST reliable way for an IS auditor to evaluate the operational effectiveness of an organization's data loss prevention (DLP) controls?
Question20: The PRIMARY role of a control self-assessment (CSA) facilitator Is to:
Question21: Which of the following is the PRIMARY advantage of using virtualization technology for corporate applications?
Question22: Many departments of an organization have not implemented audit recommendations by their agreed upon target dates. Who should address this situation?
Question23: Which of the following would be MOST important to update once a decision has been made to outsource a critical application to a cloud service provider?
Question24: Which of the following would BEST enable an IS auditor to perform an audit that requires testing the full population of data?
Question25: An IS auditor is performing a follow-up audit for findings identified In an organization's user provisioning process Which of the Mowing is the MOST appropriate population to sample from when testing for remediation?
Question26: Which of the following is MOST important for an IS auditor to review when evaluating the accuracy of a spreadsheet that contains several macros?
Question27: Which of the following is the MOST effective way to minimize the risk of a SQL injection attack?
Question28: Which of the following should be an IS auditor's GREATEST concern when reviewing an outsourcing arrangement with a third-party cloud service provider to host personally identifiable data?
Question29: An organization has implemented a quarterly job schedule to update database tables so prices are adjusted in line with a price index These changes do not go through the regular change management process Which of the following is the MOST important control to have in place?
Question30: What is the MOST difficult aspect of access control in a multiplatform, multiple-site client/server environment?
Question31: Which of the following would provide the BEST evidence of the effectiveness of mandated annual security awareness training?
Question32: An IS auditor reviewing the system development life cycle (SDLC) finds there is no requirement for business cases. Which of the following should be of GREATEST concern to the organization?
Question33: An IS auditor is assigned to review the IS departments quality procedures Upon contacting the IS manager, the auditor finds that there is an informal unwritten set of standards Which of the following should be the auditor's NEXT action?
Question34: An organization is migrating its human resources (HR) application to an Infrastructure as a Service (laaS) model in a private cloud. Who is PRIMARILY responsible for the security configurations of the deployed application's operating system?
Question35: Which of the following should be of GREATEST concern to an IS auditor conducting a security review of a point-of-sale (POS) system?
Question36: When an IS auditor evaluates key performance indicators (KPls) (or IT initiatives, it is MOST important that the KPIs indicate.
Question37: An IS auditor is asked to provide feedback on the systems options analysis for a new project The BEST course of action for the IS auditor would be to:
Question38: When determining whether a project in the design phase will meet organizational objectives, what is BEST to compare against the business case?
Question39: The IS quality assurance (OA) group is responsible for
Question40: During a routine check, a system administrator identifies unusual activity indicating an intruder within a firewall. Which of the following controls has MOST likely been compromised?
Question41: An organization plans to eliminate pilot releases and instead deliver all functionality in a single release. Which of the following is the GREATEST risk with this approach?
Question42: Which of the following is the MOST important feature of access control software?
Question43: To enable the alignment of IT staff development plans with IT strategy, which of the following should be done FIRST?
Question44: Which of the following access rights presents the GREATEST risk when granted to a new member of the system development staff?
Question45: Which of the following BEST demonstrates that IT strategy is aligned with organizational goals and objectives?
Question46: Which of the following is MOST useful for determining whether the goals of IT are aligned with the organization's goals?
Question47: Which of the following establishes the role of the internal audit function?
Question48: Which of the following is the MOST important reason to use statistical sampling?
Question49: An organization's software developers need access to personally identifiable information (Pll) stored in a particular data format. Which of the following is the BEST way to protect this sensitive information while allowing the developers to use it in development and test environments?
Question50: Which of the following is the GREATEST concern when using a cold backup site?
Question51: When conducting a requirements analysis for a project the BEST approach would be to
Question52: An IS auditor reviewing a checkpoint/restart procedure should be MOST concerned if it is applied after:
Question53: Which of the following control testing approaches is BEST used to evaluate a control's ongoing effectiveness by comparing processing results to independently calculated data?
Question54: Which of the following is the BEST indicator of the effectiveness of signature-based intrusion detection systems (IDSs)?
Question55: What is the BEST control to address SQL injection vulnerabilities?
Question56: Which of the following evidence-gathering techniques will provide the GREATEST assurance that procedures are understood and practiced?
Question57: A software development organization with offshore personnel has implemented a third-party virtual workspace to allow the teams to collaborate. Which of the following should be of GREATEST concern?
Question58: Which of the following is the BEST way to address ongoing concerns with the quality and accuracy of internal audits?
Question59: Which of the following should be an IS auditor's GREATEST concern when a security audit reveals the organization's vulnerability assessment approach is limited to running a vulnerability scanner on its network?
Question60: An IS audit manager finds that data manipulation logic developed by the audit analytics team leads to incorrect conclusions This inaccurate logic is MOST likely an indication of lich of the following?
Question61: An organization that has suffered a cyber attack is performing a forensic analysis of the affected users' computers Which of the following should be of GREATEST concern for the IS editor reviewing this process?
Question62: When of the following is to MOST important consideration when prioritizing IT system for penetration testing?
Question63: Which of the following would an IS auditor PRIMARILY review to understand key drivers of a project?
Question64: Which of the following encryption methods offers the BEST wireless security?
Question65: Which of the following is the BEST methodology to use for estimating the complexity of developing a large business application?
Question66: An IS auditor notes that application super-user activity was not recorded in system logs. What is the auditor's BEST course of action?
Question67: Which of the following should be the PRIMARY objective of a migration audit?
Question68: Batch processes running in multiple countries are merged to one batch job to be executed in a single data center. Which of the following is the GREATEST concern with this approach?
Question69: A data Breach has occurred due to malware. Which of the following should be the FIRST course of action?
Question70: A client/server configuration will:
Question71: One advantage of monetary unit sampling is the fact that:
Question72: Which of the following is the BEST way to determine il IT is delivering value to the business?
Question73: A USB device containing sensitive production data was lost by an employee and its contents were subsequently found published online Which of the following controls is the BEST recommendation to prevent a similar recurrence?
Question74: A bank has implemented a new accounting system. Which of the following is the BEST lime for an IS auditor to perform a post-implementation review?
Question75: The BEST way to validate whether a malicious act has actually occurred in an application is to review.
Question76: Which type of control has been established when an organization implements a security information and event management (SIEM) system?
Question77: The BEST way to preserve data integrity through all phases of application containerization is to ensure which of the following?
Question78: In a virtualized environment, which of the following techniques effectively mitigates the risk of network attacks?
Question79: Which of the following implementation strategies for new applications presents the GREATEST risk during data conversion and migration from an old system to a new system?
Question80: An IS auditor begins an assignment and identifies audit components for which the auditor is not qualified to assess. Which of the following is the BEST course of anion?
Question81: What is the BEST method for securing credit card numbers stored temporarily on a file server prior to transmission to the downstream system for payment processing?
Question82: A user of a telephone banking system has forgotten his personal identification number (PIN), after the user has been authenticated, the BEST method of issuing a new pin is to have:
Question83: Which of the following MOST efficiently protects computer equipment against short-term reductions in electrical power?
Question84: An effective implementation of security roles and responsibilities is BEST evidenced across an enterprise when:
Question85: When measuring the effectiveness of a security awareness program, the MOST helpful key performance indicator (KPI) is the number of:
Question86: An IS auditor is reviewing an organization's information asset management process. Which of the following would be of GREATEST concern to the auditor'?
Question87: Which of the following is MOST important for an IS auditor to confirm when conducting a review of an active-active application cluster configuration?
Question88: An IS auditor learns the organization has experienced several server failures in its distributed environment. Which of the following is the BEST recommendation to limit the potential Impact of server failures in the future?
Question89: An IS auditor performing an audit of backup procedures observes that backup tapes are picked up weekly and stored offsite at a third-party hosting facility. Which of the following recommendations would be the BEST way to protect the integrity of the data on the backup tapes?
Question90: Following the sale of a business division, employees will be transferred to a new organization, but they will retain access to IT equipment from the previous employer. An IS auditor has recommended that both organizations agree to and document an acceptable use policy for the equipment. What type of control has been recommended?
Question91: A sales representative is reviewing the organization's feedback blog and gets redirected to a site that sells illegal prescription drugs. The blog site is MOST likely susceptible to which of the following types of attacks?
Question92: Which of the following applications has the MOST inherent risk and should be prioritized during audit planning?
Question93: Secure code reviews as part of a conbnuous deployment program are which type of control?
Question94: Which of the following is the MOST important consideration for an IS auditor when assessing the adequacy of an organizations information security policy?
Question95: An IS auditor finds that the process for removing access for terminated employee is not documented. What is the MOST significant risk from this observation?
Question96: An IS auditor assessing the controls within a newly implemented call center would FIRST
Question97: The GREATEST benefit of using a prototyping approach in software development is that it helps to:
Question98: To lest the integrity of the data in the accounts receivable master file, an IS auditor is particularly interested in reviewing customers with balances over 400,000. The selection technique the IS auditor would use to obtain such a sample is called:
Question99: Which of the following is the BEST source of information for an IS auditor when planning an audit of a business application's controls?
Question100: What is the PRIMARY purpose of performing a parallel run of a new system?
Question101: Which of the following is the PRIMARY purpose of using data analytics when auditing an enterprise resource planning (ERP) system for a large organization?
Question102: Which of the following BEST indicates that an organization has effective governance in place?
Question103: An organization uses multiple offsite data center facilities Which of the following is MOST important to consider when choosing related backup devices and media?
Question104: Which of the following audit procedures would be MOST conclusive in evaluating the effectiveness of an e-commerce application system's edit routine?
Question105: Which type of control is being implemented when a biometric access device is installed at the entrance to a facility?
Question106: Which of the following demonstrates the use of data analytics for a loan origination process?
Question107: Which of the following is the PRIMARY objective of implementing privacy-related controls within an organization"?
Question108: In which phase of penetration testing would host detection and domain name system (DNS) interrogation be performed?
Question109: Which of the following is an example of a corrective control?
Question110: An audit has identified that business units have purchased cloud-based applications without ITs support. What is [he GREATEST risk associated with this situation?
Question111: An IS auditor discovers an option in a database that allows the administrator to directly modify any table This option is necessary to overcome Dugs in the software, but is rarefy used Changes to tables are automatically logged The IS auditors FIRST action should be to:
Question112: The GREATEST risk of database denormalization is:
Question113: Which of the following findings should be of GREATEST concern to an IS auditor performing a review of IT operations?
Question114: Which of the following is an example of a preventive control?
Question115: Which of the following is MOST important for an IS auditor to verify during a disaster recovery audit?
Question116: During which IT project phase is it MOST appropriate to conduct a benefits realization analysis?
Question117: Following the discovery of inaccuracies in a data warehouse, an organization has implemented data profiling, cleansing, and handling filters to enhance the quality of data obtained from c
Question118: To ensure efficient and economic use of limited resources in supporting a local area network (LAN) infrastructure, it is advisable to:
Question119: Which of the following is MOST important to ensure that electronic evidence collected during a forensic investigation will be admissible in future legal proceeding?
Question120: A security company and service provider have merged and the CEO has requested one comprehensive set of security policies be developed for the newly formed company. The IS auditor s BEST recommendation would be to:
Question121: Which of the following is the BEST source for describing the objectives of an organization s information systems?
Question122: Management has asked internal audit to prioritize and perform a specialized cybersecurity audit, but the IS audit team has no experience in this are a. Which of the following is the BEST course of action?
Question123: Which of the following is a preventive control related to change management?
Question124: After an employee termination, a network account was removed, but the application account remained active. To keep this issue from recurring, which of the following is the BEST recommendation?
Question125: On a public-key cryptosystem when there is no previous knowledge between parties, which of the following will BEST help to prevent one person from using a fictitious key to impersonate someone else?
Question126: Which of the following is the MAIN purpose of an information security management system?
Question127: Which of the following is the BEST control to mitigate the malware risk associated with an instant messaging (IM) system1?
Question128: During an operational audit of a biometric system used to control physical access, which of the following should be of GREATEST concern to an IS auditor?
Question129: What is the PRIMARY benefit of an audit approach which requires reported findings to be issued together with related action plans, owners, and target dates?
Question130: An IS auditor is examining a front-end sub ledger and a main ledger Which of the following would be the GREATEST concern if there are flaws in the mapping of accounts between the two systems?
Question131: While conducting a review of project plans related to a new software development, an IS auditor finds the project initiation document (PID) is incomplete. What is the BEST way for the auditor to proceed?
Question132: During an exit interview senior management disagrees with some of the facts presented in the draft audit report and wants them removed from the report Which of the following would be the auditor's BEST course of action?
Question133: Which of the following would be an IS auditor's GREATEST concern when reviewing an organization's security controls for policy compliance?
Question134: An airlines online booking system uses an automated script that checks whether fares are within the defined threshold of what is reasonable before the fares are displayed on the website. Which type of control is in place?
Question135: Which of the following is the PRIMARY reason for an organization's procurement processes to include an independent party who is not directly involved with business operations and related decision-making'?
Question136: Which of the following should be of GREATEST concern to an IS auditor reviewing a system software development project based on agile practices?
Question137: An organization's IT security policy requires annual security awareness training for all employees. Which of the following would provide the BEST evidence of the training's effectiveness?
Question138: In planning a major system development project, function point analysis would assist in:
Question139: Which of the following should be of concern to an IS auditor performing a software audit on virtual machines?
Question140: An organization allows its employees to use personal mobile devices for work. Which of the following would BEST maintain information security without compromising employee privacy?
Question141: Which of the following would BEST detect that a distributed-denial-of-service attack (DDoS) is occurring?
Question142: In an IT organization where many responsibilities are shared, which of the following would be the BEST control for detecting unauthorized data changes?
Question143: Which of the following should be included in emergency change control procedures?
Question144: Which of the following is the MOST reliable network connection medium in an environment where there is strong electromagnetic interface?
Question145: The MOST important function of a business continuity plan (BCP) is to.
Question146: When removing a financial application system from production, which of the following is MOST important?2E1457D5D1DDCBD40AB3BF70D5D
Question147: Which of the following should be the PRIMARY basis for procedures to dispose of data securely?
Question148: Segregation of duties would be compromised if:
Question149: When reviewing a contract for a disaster recovery hot site, which of the following would be the MOST significant omission?
Question150: Which of the following is the BEST way to reduce sampling risk?
Question151: A bank is relocating its servers to a vendor that provides data center hosting services to multiple clients. Which of the following controls would restrict other clients from physical access to the bank servers?
Question152: After delivering an audit report, the audit manager discovers that evidence was overlooked during the audit This evidence indicates that a procedural control may have failed and could contradict a conclusion of the audit. Which of the following risks is MOST affected by the oversight?
Question153: What is the MAIN purpose of an organization's internal IS audit function?
Question154: An evaluation of an IT department finds that some IT goals do not align with the organization's goals. Which of the following would be the GREATEST impact?
Question155: After the release of an application system, an IS auditor wants to verify that the system is providing value to the organization. The auditor's BEST course of action would be to:
Question156: What is the MOST critical finding when reviewing an organization's information security management?
Question157: Which of the following is MOST helpful in preventing a systems failure from occurring when an application is replaced using the abrupt changeover technique?
Question158: Which of the following concerns is BEST addressed by securing production source libraries?
Question159: Which of the following is the GREATEST risk associated with lack of IT involvement in the organization's strategic planning initiatives?
Question160: A manufacturing company is implementing application software for its sales and distribution system. Which of the following is the MOST important reason for the company to choose a centralized online database?
Question161: Which of the following would be of GREATEST concern if noted during an audit of compliance with licensing agreements?
Question162: Which cloud deployment model is MOST likely to be limited in scalability?
Question163: An IS auditor performing an audit of backup procedures observes that backup tapes are picked up weekly and stored offsite at a deed party hosting faculty. Which of the following recommendations would be the BEST way to maintain data integrity during transport?
Question164: An IS auditof notes the transaction processing times in an order processing system have significantly increased after a major release Which of the following should the IS auditor review FIRST?
Question165: An application used at a financial services organization transmits confidential customer data to downstream applications using a batch process. Which of the following controls would protect this information?
Question166: An IS auditor reviewing a high-risk business application has identified the need to strengthen controls for reporting malfunctions to management Which of the following would BEST facilitate timely reporting?
Question167: Which of the following analytical methods would be MOST useful when trying to identify groups with similar behavior or characteristics in a large population?
Question168: Which of the following is MOST important to include in forensic data collection and preservation procedures?
Question169: An organization with high availability resource requirements is selecting a provider for cloud computing. Which of the following would cause the GREATEST concern to an IS auditor? The provider:
Question170: Which of the following is MOST important for an organization to complete prior to developing its disaster recovery plan (DRP)?
Question171: An IS auditor finds that terminated users have access to financial applications. Which of the following is the auditor's MOST important course of action when assessing the impact?
Question172: Which of the following indicates that an internal audit organization is structured to support the independence and clarity of the reporting process?
Question173: Which of the following will MOST likely compromise the control provided by a digital signature created using RSA encryption?
Question174: During which phase of a system development project should key performance indicators (KPIs) be established'?
Question175: A data analytics loam has developed a process automation bot for internal audit that scans user access to all servers in the environment and then randomly selects a sample of new users lor testing. Which of the following presents the GREATEST concern with this approach?
Question176: When reviewing a project to replace multiple manual data entry systems with an artificial intelligence (Al) system, the IS auditor should be MOST concerned with the impact At will have on:
Question177: An employee has accidentally posted confidential data to the company's social media page. Which of the following is the BEST control to prevent this from recurring?
Question178: Which of the following is the MOST important consideration for building resilient systems?
Question179: An IS auditor is reviewing an industrial control system (ICS) that uses older unsupported technology in the scope of an upcoming audit. What should the auditor consider the MOST significant concern?
Question180: Which of the following is the BEST indicator for measuring performance of the IT help desk function?
Question181: Which of the following BEST enables system resiliency for an e-commerce organization that requires a low recovery time objective (RTO) ana a few recovery point objective (RPO)?
Question182: A company uses a standard form to document and approve all changes in production programs. To ensure that the forms are properly authorized, which of the following is the MOST effective sampling method?
Question183: Which of the following is the client organization's responsibility in a Software as a Service (SaaS) environment?
Question184: An IS auditor plans to review all access attempts to a video-monitored and proximity card-controlled communications room. Which of the following would be MOST useful to the auditor?
Question185: To protect information assets, which of the following should be done FIRST?
Question186: Both statistical and nonstatistical sampling techniques:
Question187: During a review of a production schedule, an IS auditor observes that a staff member is not complying with mandatory operational procedures. The auditor's NEXT step should be to:
Question188: During an audit of a disaster recovery plan (DRP) for a critical business area, an IS auditor finds that not all critical systems are covered. What should the auditor do NEXT?
Question189: When evaluating a protect immediately prior to implementation, which of the following would provide the BEST evidence that the system has the required functionality?
Question190: Which of the following should occur EARLIEST in a business continuity management lifecycle?
Question191: Which of the following is the PRIMARY reason to adopt a capability model?
Question192: Which of the following is the MAIN benefit of using data analytics when testing the effectiveness of controls?
Question193: Which of the following is an IS auditor's BEST recommendation to help an organization increase the efficiency of computing resources?
Question194: Which of the following is the MAIN risk associated with adding a new system functionality during the development phase without following a project change management process?
Question195: When auditing the closing stages of a system development project, which of the following should be the MOST important consideration?
Question196: Which of the following should be reviewed FIRST when assessing the effectiveness of an organization's network security procedures and controls?
Question197: Which of the following should be of GREATEST concern to an IS auditor reviewing on-site preventive maintenance for an organization's business critical server hardware?
Question198: The MOST important reason why an IT risk assessment should be updated on a regular basis is to:
Question199: Which of the following should be the FIRST step in an organization's forensics process to preserve evidence?
Question200: An IS auditor is planning on utilizing attribute sampling to determine the error rate for health care claims processed. Which of the following factors will cause the sample size to decrease?
Question201: Which of the following is MOST important to ensure when planning a black box penetration test?
Question202: Which of the following information security requirements BEST enables the tracking of organizational data in a bring your own device (BYOD) environment?
Question203: Which of the following is the BEST indication of the completeness of interface control documents used for the development of a new application?
Question204: During a software acquisition review, an IS auditor should recommend that there be a software escrow agreement when:
Question205: An IS auditor concludes that an organization has a quality security policy. Which of the following is MOST important to determine next? The policy must be:
Question206: Which of the following would be the BEST indicator of the effectiveness of an organization's portfolio management program?
Question207: An organization is developing data classification standards and has asked internal audit for advice on aligning the standards with best practices. Internal audit would MOST likely recommend the standards should be:
Question208: An auditor is creating an audit program in which the objective is to establish the adequacy of personal data privacy controls in a payroll process. Which of the following would be MOST important to include?
Question209: A financial institution is launching a mobile banking service utilizing multi-factor authentication. This access control is an example of which of the following?
Question210: Which of the following should be of GREATEST concern to an IS auditor reviewing project documentation for a client relationship management (CRM) system migration project?
Question211: An information systems security officer's PRIMARY responsibility for business process applications is to:
Question212: Which of the following metrics is MOST useful to an IS auditor when evaluating whether IT investments are meeting business objectives?
Question213: During data migration, which of the following BEST prevents integrity issues when multiple processes within the migration program are attempting to write to the same table in the databases?
Question214: An organization has replaced all of the storage devices at its primary data center with new higher capacity units The replaced devices have been installed at the disaster recovery site to replace older units An IS auditor s PRIMARY concern would be whether.
Question215: Due to system limitations, segregation of duties (SoD) cannot be enforced in an accounts payable system. Which of the following is the IS auditor s BEST recommendation for a compensating control?
Question216: An IS auditor is reviewing an enterprise database platform. The review involves statistical methods. Benford analysis, and duplicate checks. Which of the following computer-assisted audit technique (CAAT) tools would be MOST useful for this review''
Question217: Which of the following should an IS auditor validate FIRST when reviewing the security of an organization's IT infrastructure as it relates to Internet of Things (loT) devices?
Question218: An organization allows employees to use personally owned mobile devices to access customers' personal information Which of the following is MOST important for an IS auditor to verify?
Question219: An incorrect version of source code was amended by a development team, This MOST likely indicates a weakness in:
Question220: When implementing a new IT maturity model which of the following should occur FIRST?
Question221: Which of the following is the BEST way to mitigate the impact of ransomware attacks?
Question222: A bank's web-hosting provider has just completed an internal IT security audit and provides only a summary of the findings to the bank's auditor. Which of the following should be the bank's GREATEST concern?
Question223: Which of the following controls would BEST ensure that payroll system rate changes are valid?
Question224: Which of the following approaches would utilize data analytics to facilitate the testing of a new account creation process?
Question225: Which of the following is MOST important for an IS auditor to consider when planning an assessment of the organization's end-user computing (EUC) program?
Question226: An organization has recently converted its infrastructure to a virtualized environment. The GREATEST benefit related to disaster recovery is that virtualized servers:
Question227: During an audit of a data classification policy, an IS auditor finds that many documents are inappropriately classified as confidential. Which of the following is the GREATEST concern?
Question228: When reviewing backup policies, an IS auditor MUST verify that backup intervals of critical systems do not exceed which of the following?
Question229: Which of the following control techniques BEST ensures the integrity of system interface transmissions?
Question230: Which of the following is MOST important for an IS auditor to consider when reviewing documentation for an organization's forensics policy?
Question231: Which of the following development practices would BEST mitigate the risk associated with theft of user credentials transmitted between mobile devices and the corporate network?
Question232: What is the purpose of a hypervisor?
Question233: Which of the following would BEST provide executive management with current information on IT related costs and IT performance indicators?
Question234: Which of the following yields the HIGHEST level of system availability?
Question235: During an ongoing audit management requests a briefing on the findings to date Which of the following is the IS auditor's BEST course of action? *
Question236: An accounts receivable data entry routine prevents the entry of the same customer with different account numbers. Which of the following is the BEST way to test if this programmed control is effective?
Question237: An IS auditor notes that IT and the business have different opinions on the availability of their application servers Which of the following should the IS auditor review FIRST in order to understand the problem?
Question238: Which of the following statements appearing in an organization's acceptable use policy BEST demonstrates alignment with data classification standards related to the protection of information assets?
Question239: Which of the following should be of GREATEST concern to an IS auditor performing a review of information security controls?
Question240: An organization has recently implemented a Voice-over IP (VoIP) communication system. Which of the following should be the IS auditor's PRIMARY concern?
Question241: Which of the following is the BEST justification for deferring remediation testing until the next audit?
Question242: Which of the following provides the MOST comprehensive description of Its role in an organization?
Question243: An IS auditor is using data analytics in an audit and has obtained the data to be used for testing. Which of the following is the MOST important task before testing begins?
Question244: When reviewing an organization s IT governance processes, which of the following provides the BEST indication that information security expectations are being met at all levels?
Question245: Which of the following approaches would BEST ensure that data protection controls are embedded into software being developed?
Question246: During an audit, which of the following would be MOST helpful in establishing a baseline for measuring data quality?
Question247: An IS auditor is reviewing the business requirements 'or the deployment of a new website Which of the following cryptographic systems would provide the BEST evidence of secure communications on the internet?
Question248: Which of the following is the MOST important issue for an IS auditor to consider with regard to Voice-over IP (VoIP) communications?
Question249: IT disaster recovery lime objectives (RTOs) should be based on [he:
Question250: An IS auditor discovers that due to resource constraints, a database administrator (DBA) is responsible for developing and executing changes into the production environment.
Which of the following should the auditor do FIRST?
Question251: The PRIMARY reason an IS department should analyze past incidents and problems is to:
Question252: Which of the following system conversion strategies provides the GREATEST redundancy?
Question253: Following a breach, what is the BEST source 10 determine the maximum amount of time before customers must be notified that their personal information may have been compromised?
Question254: The decision to accept an IT control risk related to data quality should be the responsibility of the:
Question255: Which of the following is the MOST effective approach in assessing the quality of modifications made to financial software?
Question256: A large insurance company is about to replace a major financial application. Which of the following is the IS auditor's PRIMARY focus when conducting the pre-implementation review?
Question257: When conducting a post-implementation review of a new software application, an IS auditor should be MOST concerned with an increasing number of
Question258: To BEST evaluate the effectiveness of a disaster recovery plan, the IS auditor should review the:
Question259: Which of the following should be of GREATEST concern to an IS auditor reviewing the controls for a continuous software release process?
Question260: When evaluating the ability of a disaster recovery plan (DRP) to enable the recovery of IT processing capabilities, it is MOST important for the IS auditor to verify the plan is:
Question261: Which of the following would provide the BEST evidence for use in a forensic investigation of an employee's hard drive?
Question262: The PRIMARY benefit of using secure shell (SSH) to access a server on a network is that it:
Question263: Which of the following approaches provides the BEST assurance and user confidence when an organization migrates data to a more complex enterprise resource planning (ERP) system?
Question264: Following a significant merger and acquisition, which of the following should the chief audit executive (CAE) do FIRST to evaluate the performance of the combined internal audit function?
Question265: Which of the following is the BEST method to prevent wire transfer fraud by bank employees?
Question266: When reviewing an organization's information security policies, an IS auditor should verify that the policies have been defined PRIMARILY on the basis of
Question267: Which type of control is in place when an organization requires new employees to complete training on applicable privacy and data protection regulations?
Question268: Which of the following is the MOST significant risk associated with peer-to-peer networking technology?
Question269: Which of the following would be of GREATEST concern to an IS auditor evaluating governance over open source development components?
Question270: An IS auditor is reviewing security controls related to collaboration to unit responsible for intellectual property and patents. Which of the following observations should be of MOST concern to the auditor?
Question271: Which of the following should be done by an IS auditor during a post-implementation review of a critical application that has been operational for six months''
Question272: Which of the following group is MOST likely responsible for the implementation of IT projects?
Question273: An IS auditor is conducting a pre-implementation review to determine a new system's production readiness. The auditor's PRIMARY concern should be whether:
Question274: A vulnerability in which of the following virtual systems would be of GREATEST concern to the IS auditor?
Question275: A 5 year audit plan provides for general audits every year and application audits on alternating years. To achieve higher efficiency, the IS audit manager would MOST likely:
Question276: What should be the PRIMARY basis for scheduling a follow-up audit?
Question277: Several unattended laptops containing sensitive customer data were stolen from personnel offices Which of the following would be an IS auditor's BEST recommendation to protect data in case of recurrence?
Question278: Which of the following should an IS auditor review FIRST when planning a customer data privacy audit?
Question279: An IS auditor is evaluating the security of an organization's data backup process which includes the transmission of daily incremental backups to a public cloud provider Which of the following findings poses the GREATEST risk to the organization?
Question280: Which of the following BEST enables and IS auditor to review system logs for unusual activity by users?
Question281: An organization's business function wants to capture customer data and must comply with global data protection regulations. Which of the following should be considered FIRST?
Question282: Which of the following is the BEST compensating control for a lack of proper segregation of duties in an IT department?
Question283: Which of the following is the GREATEST concern associated with a high number of IT policy exceptions approved by management?
Question284: Which of the following is a determine security control that reduces the likelihood of an insider threat event?
Question285: During a follow-up audit, an IS auditor finds that some critical recommendations have not been addressed as management has decided to accept the risk. Which of the following is the IS auditor's BEST course of action?
Question286: Which of the following is MOST important for an effective control self-assessment (CSA) program?
Question287: An IS auditor was involved in the design phase for a new system's security architecture. For the planned post-implementation audit which of the following would be the MOST appropriate course of action for the auditor?
Question288: An organization has begun using social media to communicate with current and potential clients. Which of the following should be of PRIMARY concern to the auditor?
Question289: Which of the following is the PRIMARY purpose of conducting follow-up audits for material observations?
Question290: An organization is using a single account shared by personnel for its social networking marketing page. Which of the following is the BEST method to maintain accountability over the account?
Question291: Which of the following issues identified during a postmortem analysis of the IT security incident response process should be of GREATEST concern?
Question292: An IS auditor previously worked in an organization s IT department and was involved with the design of the business continuity plan (BCP). The IS auditor has now been asked to review this same BCP. The auditor should FIRST.
Question293: Which of the following are BEST suited for continuous auditing?
Question294: An IT governance framework provides an organization with:
Question295: Which of the following BEST facilitates the management of assets during the implementation of an information system?
Question296: Which of the following should be done FIRST when planning a penetration test?
Question297: Which of the following is the BEST way to mitigate the risk associated with a document storage application that has a syncing feature that could allow malware to spread to other machines in the network?
Question298: A checksum is classified as which type of control?
Question299: Which of the following is MOST important for an IS auditor to test when reviewing market data received from external providers?
Question300: Which of the following is the BEST method to maintain an audit trail of changes made to the source code of a program?
Question301: Which of the following is MOST important for an IS auditor to assess during a post-implementation review of a newly modified IT application developed in-house?
Question302: Which of the following is MOST important to ensure when reviewing a global organization's controls to protect data held on its IT infrastructure across all of its locations?
Question303: An organization has suffered a number of incidents in which USB flash drives with sensitive data have been lost. Which of the following would be MOST effective in preventing loss of sensitive data?
Question304: An organization plans to receive an automated data feed into its enterprise data warehouse from a third-party service provider. Which of the following would be the BEST way to prevent accepting bad data?
Question305: What is the PRIMARY reason for conducting a risk assessment when developing an annual IS audit plan?
Question306: Which of the following is the BEST preventive control to ensure the integrity of server operating systems?
Question307: Which of the following observations should be of GREATEST concern to an IS auditor reviewing a hosted virtualized environment where each guest operating system (OS) is r
Question308: Which of the following findings should be of GREATEST concern to an IS auditor conducting a forensic analysis following incidents of suspicious activities on a server?
Question309: The CIO of an organization is concerned that the information security policies may not be comprehensive. Which of the following should an IS auditor recommend be performed FIRST?
Question310: Which of the following would be MOST useful to an IS auditor confirming thai an IS department meets its service level agreements (SLAs)?
Question311: Which of the following is the MOST effective control for protecting the confidentiality and integrity of data stored unencrypted on virtual machines?
Question312: An IS auditor is reviewing a sample of production incidents and notes that a root cause analysis is not being performed. Which of the following is the GREATEST risk associated with this finding?
Question313: Which of the following controls is BEST implemented through system configuration?
Question314: Which of the following is the BEST source of information for assessing the effectiveness of IT process monitoring?
Question315: While reviewing an organization s business continuity plan (BCP) an IS auditor observes that a recently developed application is not included. The IS auditor should:
Question316: External experts were used on a recent IT audit engagement While assessing the external experts' work, the internal audit team found some gaps in the evidence that may have impacted their conclusions What is the internal audit team's BEST course of action?
Question317: A CIO has asked an IS auditor to implement several security controls for an organization s IT processes and systems. The auditor should:
Question318: An existing system is being replaced with a new application package User acceptance testing (UAT) should ensure that
Question319: Which of the following should be done FIRST when developing a business continuity plan (BCP)?
Question320: Which of the following security risks can be reduced by a property configured network firewall?
Question321: An organization has established hiring policies and procedures designed specifically to ensure network administrators are well qualified. Which type of control is in place?
Question322: An organization issues digital certificates to employees to enable connectivity to a web-based application. Which of the following public key infrastructure (PKI) components MUST be included in the application architecture for determining the on-going validity of connections?
Question323: Which of the following is an objective of data transfer controls?
Question324: What is the BEST justification for allocating more funds to implement a control for an IT asset than the actual cost of the IT asset?
Question325: An IS auditor determines that a business continuity plan has not been reviewed and approved by management. Which of the following is the MOST significant risk associated with this situation?
Question326: Which of the following would BEST help to ensure the availability of data stored with a cloud provider?
Question327: The BEST way to prevent fraudulent payments is to implement segregation of duties between payment processing and:
Question328: A warehouse employee of a retail company has been able to conceal the theft of inventory items by entering adjustments of either damaged or lost stock items to the inventory system Which control would have BEST prevented this type of fraud in a retail environment?
Question329: An organization's information security department has recently created a centralized governance model to ensure that network-related findings are remediated within the service level agreement (SLA). What should the IS auditor use to assess the maturity and capability of this governance model?
Question330: Which of the following would MOST likely impair the independence of the IS auditor when performing a post-implementation review of an application system?
Question331: Which of the following is the MOST important benefit of involving IS audit when implementing governance of enterprise IT?
Question332: Which of the following provides the MOST comprehensive understanding of an organizations information security posture?
Question333: During an audit of an organization's financial statements, an IS auditor finds that the IT general controls are deficient. What should the IS auditor recommend?
Question334: Which of the following is the GREATEST risk associated with vulnerability scanning tools used to identify security weaknesses?
Question335: When a firewall is subjected to a probing attack, the MOST appropriate first response is for the firewall to:
Question336: When is the BEST time to commence continuity planning for a new application system?
Question337: Which of the following is a detective control that can be used to uncover unauthorized access to information systems?
Question338: Which of the following is a benefit of increasing the use of data analytics in audits?
Question339: An internal audit department recently established a quality assurance (QA) program. Which of the following activities is MOST important to include as part of the OA program requirements?
Question340: The BEST indicator of an optimized quality management system (QMS) is that it
Question341: As part of a follow-up of a previous year's audit, an IS auditor has increased the expected error rate for a sample. The impact will be:
Question342: Which of the following should be the FIRST step in a data migration project?
Question343: Which of the following would BEST indicate the effectiveness of a security awareness training program?
Question344: To help ensure the accuracy and completeness of end-user computing output it is MOST important to include strong:
Question345: What is the PRIMARY benefit of prototyping as a method of system development?
Question346: Which of the following types of testing would BEST mitigate the risk of a newly implemented system adversely impacting existing systems?