EMT Practice Test

1. Question Content...


Question List

Question1: After the release of an application system, an IS auditor wants to verify that the system is providing value to the organization. The auditor's BEST course of action would be to:

Question2: Which of the following is the PRIMARY objective of implementing privacy-related controls within an organization"?

Question3: Which of the following is the GREATEST risk associated with the use of instant messaging (IM)?

Question4: An IS auditor reviewing the system development life cycle (SDLC) finds there is no requirement for business cases. Which of the following should be of GREATEST concern to the organization?

Question5: Which of the following would an IS auditor recommend as the MOST effective preventive control to reduce the risk of data leakage'

Question6: Which of the following group is MOST likely responsible for the implementation of IT projects?

Question7: An IS auditor is reviewing the installation of a new server. The IS auditor's PRIMARY objective is to ensure that

Question8: Which of the following is a directive control?

Question9: In an environment where most IT services have been outsourced, continuity planning is BEST controlled by:

Question10: The maturity level of an organization s problem management support function is optimized when the function

Question11: Which of the following is a PRIMARY role of an IT steering committee?

Question12: When reviewing a project to replace multiple manual data entry systems with an artificial intelligence (Al) system, the IS auditor should be MOST concerned with the impact At will have on:

Question13: An employee has accidentally posted confidential data to the company's social media page. Which of the following is the BEST control to prevent this from recurring?

Question14: An IS auditor intends to accept a management position in the data processing department within the same organization. However, the auditor is currently working on an audit of a major application and has not yet finished the report. Which of the following would be the BEST step tor the IS auditor to take?

Question15: Which of the following should be the FIRST step in an organization's forensics process to preserve evidence?

Question16: Which of the following BEST minimizes performance degradation of servers used to authenticate users of an e-commerce website?

Question17: An organization is running servers with critical business application that are in an area subject to frequent but brief power outages. Knowledge of which of the following would allow the organization's management to monitor the ongoing adequacy of the uninterruptable power supply (UPS)?

Question18: Which of the following is the PRIMARY purpose of quality assurance (QA) within an IS audit department?

Question19: Which of the following is a determine security control that reduces the likelihood of an insider threat event?

Question20: A CIO has asked an IS auditor to implement several security controls for an organization s IT processes and systems. The auditor should:

Question21: When evaluating the recent implementation of an intrusion detection system (IDS), an IS auditor should be MOST concerned with inappropriate:

Question22: At what point in software development should the user acceptance test plan be prepared?

Question23: To ensure efficient and economic use of limited resources in supporting a local area network (LAN) infrastructure, it is advisable to:

Question24: An IS audit reveals an organization's IT department reports any deviations from its security standards to an internal IT risk committee involving IT senior management. Which of the following should be the IS auditor's GREATEST concern?

Question25: Which of the following MOST efficiently protects computer equipment against short-term reductions in electrical power?

Question26: A month after a company purchased and implemented system and performance monitoring software reports were too large and therefore were not reviewed or acted upon The MOST effective plan of action would be to

Question27: Which of the following is the MOST important reason to use statistical sampling?

Question28: Which of the following is an example of a preventative control in an accounts payable system?

Question29: Reconciliations have identified data discrepancies between an enterprise data warehouse and a revenue system for key financial reports. What is the GREATEST risk to the organization in this situation?

Question30: Which of the following would an IS auditor consider to be the MOST significant risk associated with a project to reengineer a business process?

Question31: Which of the following is an IS auditor's BEST recommendation to help an organization increase the efficiency of computing resources?

Question32: Within the context of an IT-related governance framework, which type of organization would be considered MOST mature?

Question33: Which of the following is MOST likely to be included in computer operating procedures in a large data center?

Question34: Which of the following analytical methods would be MOST useful when trying to identify groups with similar behavior or characteristics in a large population?

Question35: An IS auditor reviewing the use of encryption finds that the symmetric key is sent by an email message between the parties. Which of the following audit responses is correct in this situation?

Question36: An organization is within a jurisdiction where new regulations have recently been announced to restrict cross-border data transfer of personally identifiable information (PIl). Which of the following IT decisions will MOST likely need to be assessed in the context of this?

Question37: In planning a major system development project, function point analysis would assist in:

Question38: Which of the following is the MOST likely cause of a successful firewall penetration?

Question39: Which of the following is the BEST way to mitigate the risk associated with a document storage application that has a syncing feature that could allow malware to spread to other machines in the network?

Question40: Which of the following is the MOST important operational aspect for an IS auditor to consider when assessing an assembly line with quality control sensors accessible via wireless techno

Question41: Which of the following should be done FIRST to effectively define the IT audit universe for an entity with multiple business lines?

Question42: An organization with high availability resource requirements is selecting a provider for cloud computing.
Which of the following would cause the GREATEST concern to an IS auditor? The provider:

Question43: An IS auditor is reviewing the change management process in a large IT service organization. Which of the following observations would be the GREATEST concern?

Question44: Which of the following is MOST important lo have in place for he continuous improvement of process maturity within a large IT support function?

Question45: Which of the following is the BEST way to ensure that business continuity plans (BCPs) will work effectively in the event of a major disaster?

Question46: An IS auditor previously worked in an organization s IT department and was involved with the design of the business continuity plan (BCP). The IS auditor has now been asked to review this same BCP. The auditor should FIRST.

Question47: Which of the following issues identified during a postmortem analysis of the IT security incident response process should be of GREATEST concern?

Question48: During an audit of a financial application, it was determined thai many terminated users' accounts were not disabled. Which of the following should be the IS auditors NEXT step?

Question49: Which of the following provides an IS auditor the MOST assurance that an organization is compliant with legal and regulatory requirements?

Question50: Management has decided to include a compliance manager in the approval process for a new business that may require changes to tie IT infrastructure. Which of the following is the GREATEST benefit of this approach?

Question51: When developing metrics to measure the contribution of IT to the achievement of business goals, the MOST important consideration is that the metrics:

Question52: When evaluating database management practices, which of the following controls would MOST effectively support data integrity?

Question53: Which of the following is a preventive control related to change management?

Question54: An organization s audit charter PRIMARILY:

Question55: Which of the following is the BEST recommendation to prevent fraudulent electronic funds transfers by accounts payable employees?

Question56: Which of the following provides an IS auditor with the BEST evidence that a system has been assessed for known exploits?

Question57: Post-implementation testing is an example of which of the following control types?

Question58: Compared to developing a system in-house, acquiring a software package means that the need for testing by end users is:

Question59: Which of the following poses the GREATEST risk to a company that allows employees to use personally owned devices to access customer files on the company's network?

Question60: Which of the following should be the PRIMARY objective of a migration audit?

Question61: The recovery time objective (RTO) is normally determined on the basis of the:

Question62: During a routine check, a system administrator identifies unusual activity indicating an intruder within a firewall. Which of the following controls has MOST likely been compromised?

Question63: Which of the following is MOST likely to be detected by an IS auditor applying data analytic techniques?

Question64: An organization developed a comprehensive three-year IT strategic plan Halfway into the plan a major legislative change impacting the organization is enacted. Which of the following should be management's NEXT course of action?

Question65: Which of the following should be of GREATEST concern to an IS auditor reviewing the controls for a continuous software release process?

Question66: When deploying an application that was created using the programming language and tools supported by the cloud provider, the MOST appropriate cloud computing model for an organization to adopt is:

Question67: When an organization introduces virtualization into its architecture, which of the following should be an IS auditor's PRIMARY area of focus to verify adequate protection?

Question68: Which of the following BEST determines if a batch update job was successfully executed?

Question69: Which of the following should be of MOST concern to an IS auditor during the review of a quality management system?

Question70: Which of the following is the BEST indicator of the effectiveness of signature-based intrusion detection systems (IDSs)?

Question71: An IS auditor will be testing accounts payable controls by performing data analytics on the entire population of transactions. Which of the following is MOST important for the auditor to confirm when sourcing the population data?

Question72: Which of the following is the PRIMARY reason for an organization's procurement processes to include an independent party who is not directly involved with business operations and related decision-making'?

Question73: Which of the following should be a concern to an IS auditor reviewing a digital forensic process for a security incident?

Question74: Which of the following is the MOST reliable way for an IS auditor to evaluate the operational effectiveness of an organization's data loss prevention (DLP) controls?

Question75: The PRIMARY objective of IT service level management is to.

Question76: An IS auditor finds that needed security patches cannot be applied to some of an organization's network devices due to compatibility issues. The organization has not budgeted sufficiently for security upgrades.
Which of the following should the auditor recommend be done FIRST?

Question77: Which of the following will BEST help to ensure that an in-house application in the production environment is current?

Question78: Which of the following is the MAIN purpose of data classification?

Question79: An IS auditor is reviewing a recent security incident and is seeking information about the approval of a recent modification to a database system's security settings Where would the auditor MOST likely find this information?

Question80: An IS auditor reviewing a checkpoint/restart procedure should be MOST concerned if it is applied after:

Question81: An organization's security policy mandates that all new employees must receive appropriate security awareness training. Which of the following metrics would BEST assure compliance with this policy?

Question82: An e-commerce enterprise's disaster recovery (DR) site has 30% less processing capability than the primary site. Based on this information, which of the following presents the GREATEST risk?

Question83: Which of the following human resources management practices BEST leads to the detection of fraudulent activity?

Question84: Which of the following control techniques BEST ensures the integrity of system interface transmissions?

Question85: Which of the following is the PRIMARY purpose of using data analytics when auditing an enterprise resource planning (ERP) system for a large organization?

Question86: An IS auditor finds that firewalls are outdated and not supported by vendors. Which of the following should be the auditor s NEXT course of action?

Question87: Which of the following controls will BEST ensure that the board of directors receives sufficient information about IT?

Question88: When a firewall is subjected to a probing attack, the MOST appropriate first response is for the firewall to:

Question89: An organization is deciding whether to outsource its customer relationship management systems to a provider located in another country. Which of the following should be the PRIMARY influence in the outsourcing decision?

Question90: The PRIMARY reason to follow up on prior-year audit reports is to determine if

Question91: Which of the following would provide the BEST evidence for use in a forensic investigation of an employee's hard drive?

Question92: Which of the following is a corrective control?

Question93: Which of the following is the PRIMARY reason an IS auditor should discuss observations with management before delivering a final report?

Question94: An audit has identified that business units have purchased cloud-based applications without ITs support. What is [he GREATEST risk associated with this situation?

Question95: An IS audit manager finds that data manipulation logic developed by the audit analytics team leads to incorrect conclusions This inaccurate logic is MOST likely an indication of lich of the following?

Question96: The MOST important function of a business continuity plan (BCP) is to.

Question97: During a disaster recovery audit, an IS auditor finds that a business impact analysis (BIA) has not been performed The auditor should FIRST.

Question98: When an IS auditor evaluates key performance indicators (KPls) (or IT initiatives, it is MOST important that the KPIs indicate.

Question99: Which of the following should be an IS auditor's GREATEST concern when reviewing an outsourcing arrangement with a third-party cloud service provider to host personally identifiable data?

Question100: During an exit interview senior management disagrees with some of the facts presented in the draft audit report and wants them removed from the report Which of the following would be the auditor's BEST course of action?

Question101: Which of the following is MOST important to include in a contract to outsource data processing that involves customer personally identifiable information (Pit)?

Question102: A senior auditor is reviewing work papers prepared by a junior auditor indicating that a finding was removed after the auditee said they corrected the problem. Which of the following is the senior auditor's MOST appropriate course of action?

Question103: Which of the following would be the MOST significant factor when choosing among several backup system alternatives with different restoration speeds?

Question104: During a privileged access review, an IS auditor observes many help desk employees have privileges within systems not required for their job functions. Implementing which of the following would have prevented this situation?

Question105: Which of the following is MOST important to ensure when planning a black box penetration test?

Question106: The PRIMARY purpose for an IS auditor to review previous audit reports during the planning phase of a current audit is to:

Question107: During a security audit, an IS auditor is tasked with reviewing log entries obtained from an enterprise intrusion prevention system (IPS). Which type of risk would be associated with the potential for the auditor to miss a sequence of logged events that could indicate an error in the IPS configuration?

Question108: Which of the following provides the BEST evidence of the effectiveness of an organization s audit quality management procedures?

Question109: Which of the following is the PRIMARY reason for using a digital signature?

Question110: An organization issues digital certificates to employees to enable connectivity to a web-based application.
Which of the following public key infrastructure (PKI) components MUST be included in the application architecture for determining the on-going validity of connections?

Question111: During the post-implementation review of an application that was implemented six months ago which of the following would be MOST helpful in determining whether the application meets business requirements?

Question112: A multinational organization is integrating its existing payroll system with a human resource information system. Which of the following should be of GREATEST concern to the IS auditor?

Question113: What is the BEST control to address SQL injection vulnerabilities?

Question114: An IS auditor's PRIMARY objective when examining problem reports should be to help ensure:

Question115: Which of the following is an IS auditor s GREATEST concern when an organization does not regularly update software on individual workstations in the internal environment?

Question116: When evaluating the ability of a disaster recovery plan (DRP) to enable the recovery of IT processing capabilities, it is MOST important for the IS auditor to verify the plan is:

Question117: An IS auditor is evaluating the risk associated with moving from one database management system (DBMS) to another. Which of the following would be MOST helpful to ensure the integrity of the system throughout the change?

Question118: Which of the following implementation strategies for new applications presents the GREATEST risk during data conversion and migration from an old system to a new system?

Question119: In assessing the priority given to systems covered in an organization's business continuity plan (BCP), an IS auditor should FIRST:

Question120: An IS auditor notes that IT and the business have different opinions on the availability of their application servers Which of the following should the IS auditor review FIRST in order to understand the problem?

Question121: The PRIMARY reason an IS department should analyze past incidents and problems is to:

Question122: To address issues related to privileged users identified in an IS audit, management implemented a security information and event management (SIEM) system. Which type of control .........

Question123: An organization's IT security policy requires annual security awareness training for all employees. Which of the following would provide the BEST evidence of the training's effectiveness?

Question124: A company laptop has been stolen and all photos on the laptop have been published on social media. Which of the following is the IS auditor's BEST course of action?

Question125: As part of a follow-up of a previous year's audit, an IS auditor has increased the expected error rate for a sample. The impact will be:

Question126: The PRIMARY benefit of information asset classification is that it:

Question127: An organization recently implemented a cloud document storage solution and removed the ability for end users to save data to their local workstation hard drives Which of the following findings should be the IS auditor's GREATEST concern?

Question128: When reviewing an organization's data protection practices, an IS auditor should be MOST concerned with a lack of:

Question129: In an organization that has a staff-rotation policy, the MOST appropriate access control model is:

Question130: Which of the following control checks would utilize data analytics?

Question131: The BEST way to preserve data integrity through all phases of application containerization is to ensure which of the following?

Question132: Which of the following should be of concern to an IS auditor performing a software audit on virtual machines?

Question133: Which of the following is the PRIMARY reason to adopt a capability model?

Question134: Which of the following BEST ensures the quality and integrity of test procedures used in audit analytics?

Question135: Which of the following would provide an IS auditor with the MOST assurance when auditing the implementation of a new application system?

Question136: Which of the following is MOST critical to include when developing a data loss prevention (DIP) policy?

Question137: An IS auditor is examining a front-end sub ledger and a main ledger Which of the following would be the GREATEST concern if there are flaws in the mapping of accounts between the two systems?

Question138: Which of the following would be MOST important to update once a decision has been made to outsource a critical application to a cloud service provider?

Question139: Which of the following is the BEST approach to identify whether a vulnerability is actively being exploited?

Question140: An emergency power-off switch should:

Question141: Which of the following is the MOST effective way to verify an organization's ability to continue its essential business operations after a disruption event?

Question142: What would be an IS auditor's BEST recommendation upon finding that a third-party IT service provider hosts the organization's human resources (HR) system in a foreign country?

Question143: In a situation where the recovery point objective (RPO) is 0 for an online transaction processing system, which of the following is MOST important for an IS auditor to verify?

Question144: Which of the following an IS auditor assurance that the interface between a point of sale (POS) system and the general ledger is transferring sales data completely and accurately?

Question145: An IS auditor is assigned to review the development of a specific application. Which of the following would be the MOST significant step following the feasibility study?

Question146: Due to system limitations, segregation of duties (SoD) cannot be enforced in an accounts payable system.
Which of the following is the IS auditor s BEST recommendation for a compensating control?

Question147: Which of the following should an IS auditor recommend to reduce the likelihood of potential intruders using social engineering?

Question148: When determining which IS audits to conduct during the upcoming year, internal audit has received a request from management for multiple audits of the contract division due to fraud findings during the prior year Which of the following is the BEST basis for selecting the audits to be performed?

Question149: When engaging services from external auditors, which of the following should be established FIRST?

Question150: Which of the following is the MOST significant risk associated with peer-to-peer networking technology?

Question151: The BEST method an organization can employ to align its business continuity plan (BCP) and disaster recovery plan (DRP) with core business needs is to:

Question152: Which of the following observations should be of GREATEST concern to an IS auditor reviewing a hosted virtualized environment where each guest operating system (OS) is r

Question153: Which of the following is the BEST incident of an effective problem management process?

Question154: When reviewing backup policies, an IS auditor MUST verify that backup intervals of critical systems do not exceed which of the following?

Question155: Which of the following is the MOST effective way to identify anomalous transactions when performing a payroll fraud audit?

Question156: An IS auditor finds the timeliness and depth of information regarding the organization's IT projects varies based on which project manager is assigned. Which of the following recommendations would be A MOST helpful in achieving predictable and repeatable project management processes?

Question157: Which of the following is MOST helpful for an IS auditor to review when determining the appropriateness of controls relevant to a specific audit area?

Question158: Which of the following is the PRIMARY purpose of conducting follow-up audits for material observations?

Question159: Which of the following is the BEST way for an IS auditor to reduce sampling risk when performing audit sampling to verify the adequacy of an organization's internal controls?

Question160: Which of the following is MOST important for an IS auditor to consider during a review of the IT governance of an organization?

Question161: An organization has decided to implement a third-party system in its existing IT environment Which of the following is MOST important for the IS auditor to confirm?

Question162: Which of the following is the GREATEST concern when an organization allows personal devices to connect to its network?

Question163: After an external IS audit, which of the following should be IT management's MAIN consideration when determining the prioritization of follow-up activities?

Question164: An IS auditor is reviewing database log settings and notices that only INSERT and DELETE operations are being monitored in the database. What is the MOST significant risk?

Question165: Which of the following should be of GREATEST concern to an IS auditor reviewing actions taken during a forensic investigation?

Question166: Which of the following is an example of a control that is both detective and preventive at the same lime?

Question167: Which of the following BEST demonstrates that IT strategy is aligned with organizational goals and objectives?

Question168: A maturity model can be used to aid the implementation of IT governance by identifying:

Question169: Which of the following would BEST manage the risk of changes in requirements after the analysis phase of a business application development project?

Question170: An organization plans to eliminate pilot releases and instead deliver all functionality in a single release. Which of the following is the GREATEST risk with this approach?

Question171: An IS auditor is reviewing an industrial control system (ICS) that uses older unsupported technology in the scope of an upcoming audit. What should the auditor consider the MOST significant concern?

Question172: Which of the following situations would impair the independence of an IS auditor involved in a software development project?

Question173: The application systems quality assurance (QA) function should:

Question174: Which of the following is the BEST way to confirm that a digital signature is valid?

Question175: An organization's IT security policy states that user ID's must uniquely identify individual's and that user should not disclose their passwords. An IS auditor discovers that several generic user ID's are being used.
Which of the following is the MOST appropriate course of action for the auditor?

Question176: In a virtualized environment, which of the following techniques effectively mitigates the risk of network attacks?

Question177: An IS auditor notes that application super-user activity was not recorded in system logs. What is the auditor's BEST course of action?

Question178: Which of the following should be the FIRST step in a data migration project?

Question179: An IS auditor has been asked to assess the security of a recently migrated database system that contains personal and financial data for a bank's customers. Which of the following controls is MOST important for the auditor to confirm is in place?

Question180: A financial institution has a system interface that is used by its branches to obtain applicable currency exchange rates when processing transactions Which of the following should be the PRIMARY control objective for maintaining the security of the system interface?

Question181: An IS auditor is assessing an organization's data loss prevention (DLP) solution for protecting intellectual property from insider theft. Which of the following would the auditor consider MOST important for effective data protection?

Question182: An IS auditor is reviewing a banking mobile application that allows end users to perform financial transactions. Which of the following poses a security risk to the organization?

Question183: Which of the following should an IS auditor expect to find when reviewing IT security policy?

Question184: To develop a robust data security program, the FIRST course of action should be to:

Question185: Which of the following is a detective control that can be used to uncover unauthorized access to information systems?

Question186: What is the purpose of a hypervisor?

Question187: A project team evaluated vendor responses to a request for proposal (RFP). An IS auditor reviewing the evaluation process would expect the team to have considered each vendor's:

Question188: Which of the following would BEST provide executive management with current information on IT related costs and IT performance indicators?

Question189: A company is using a software developer for a project. At which of the following points should the software quality assurance (QA) plan be developed?

Question190: An IS auditor is planning to audit an organization's infrastructure for access, patching, and change management. Which of the following is the BEST way to prioritize the systems?

Question191: Which of the following is the GREATEST benefit of utilizing data analytics?

Question192: Which of the following should be an IS auditor's GREATEST concern when a security audit reveals the organization's vulnerability assessment approach is limited to running a vulnerability scanner on its network?

Question193: Which of the following would be a result of utilizing a top-down maturity model process?

Question194: An IS auditor has found that an organization is unable to add new servers on demand in a cost-efficient manner Which of the following is the auditor s BEST recommendation?

Question195: Which of the following should be included in a business impact analysis (BIA)

Question196: Due to a global pandemic, a health organization has instructed its employees to work from home as much as possible. The employees communicate using instant messaging Which of the following is the GREATEST risk in this situation?

Question197: Which of the following would be MOST helpful in ensuring security procedures are followed by employees in a multinational organization?

Question198: Which of the following is the BEST development methodology to help manage project requirements in a rapidly changing environment?

Question199: Which of the following is an example of a preventive control?

Question200: A security company and service provider have merged and the CEO has requested one comprehensive set of security policies be developed for the newly formed company. The IS auditor s BEST recommendation would be to:

Question201: The GREATEST risk of database denormalization is:

Question202: Which of the following is the BEST guidance from an IS auditor to an organization planning an initiative to improve the effectiveness of its IT processes?

Question203: Which of the following are BEST suited for continuous auditing?

Question204: An IS auditor is planning on utilizing attribute sampling to determine the error rate for health care claims processed. Which of the following factors will cause the sample size to decrease?

Question205: A legacy application is running on an operating system that is no longer supported by vendor, if the organization continues to use the current application, which of the application should be the IS auditor's GREATEST concern?

Question206: An organization decides to establish a formal incident response capability with clear roles and responsibilities facilitating centralized reporting of security incidents. Which type of control is being implemented?

Question207: What is the MOST important business concern when an organization is about to migrate a mission-critical application to a virtual environment?

Question208: An IS auditor reviewing a high-risk business application has identified the need to strengthen controls for reporting malfunctions to management Which of the following would BEST facilitate timely reporting?

Question209: Which of the following MOST effectively mitigates the risk of disclosure of sensitive data stored on company-owned smartphones?

Question210: An existing system is being replaced with a new application package User acceptance testing (UAT) should ensure that

Question211: Which of the following is the role of audit leadership in ensuring the quality of audit and engagement performance?

Question212: The practice of periodic secure code reviews is which type of control?

Question213: For a company that outsources payroll processing, which of the following is the BEST way to ensure that only authorized employees are paid?

Question214: Which type of control is being implemented when a biometric access device is installed at the entrance to a facility?