EMT Practice Test

1. Question Content...


Question List

Question1: When reviewing a data classification scheme, it is MOST important for an IS auditor to determine if.

Question2: An IS auditor finds the log management system is overwhelmed with false positive alerts. The auditor's BEST recommendation would be to:

Question3: Which of the following should be of GREATEST concern to an IS auditor reviewing a system software development project based on agile practices?

Question4: During an audit of an access control system an IS auditor finds that RFID card readers are not connected via the network to a central server Which of the following is the GREATEST risk associated with this finding?

Question5: During a review, an IS auditor discovers that corporate users are able to access cloud-based applications and data from any Internet-connected web browser. Which of the following is the auditor's BEST recommendation to help prevent unauthorized access?

Question6: During a review of an organizations network threat response process, the IS auditor noticed that the majority of alerts were closed without resolution.
Management responded that those alerts were unworkable due to lack of actionable intelligence, and therefore the support team is allowed to close them. What is the BEST way for the auditor to address this situation?'

Question7: An IS auditor is evaluating the security of an organization's data backup process which includes the transmission of daily incremental backups to a public cloud provider Which of the following findings poses the GREATEST risk to the organization?

Question8: Due to system limitations, segregation of duties (SoD) cannot be enforced in an accounts payable system. Which of the following is the IS auditor s BEST recommendation for a compensating control?

Question9: An organization has installed blade server technology in its data center. To determine whether higher cooling demands are maintained, which of the following should the IS auditor review?

Question10: An advantage of object-oriented system development is that it:

Question11: The PRIMARY role of a control self-assessment (CSA) facilitator is lo:

Question12: Which of the following is the BEST indication of the completeness of interface control documents used for the development of a new application?

Question13: An IS auditor is executing a risk-based IS audit strategy to ensure that key areas are audited Which of the following should be of GREATEST concern to the auditor?

Question14: Which of the following measures BEST mitigates the risk of exfiltration during a cyber attack?

Question15: Which of the following should be of GREATEST concern to an IS auditor reviewing project documentation for a client relationship management (CRM) system migration project?

Question16: Which of the following is the BEST method to prevent wire transfer fraud by bank employees?

Question17: Which of the following approaches would BEST ensure that data protection controls are embedded into software being developed?

Question18: An organization is disposing of a system containing sensitive data and has deleted all files from the hard disk. An IS auditor should be concerned because:

Question19: An organization is shifting to a remote workforce. In preparation, the IT department is performing stress and capacity testing of remote access infrastructure and systems. What type of control is being implemented?

Question20: An organization's information security department has recently created a centralized governance model to ensure that network-related findings are remediated within the service level agreement (SLA). What should the IS auditor use to assess the maturity and capability of this governance model?

Question21: An organization developed a comprehensive three-year IT strategic plan Halfway into the plan a major legislative change impacting the organization is enacted Which oi the following should be management's NEXT course of action?

Question22: During an audit of a financial application, it was determined that many terminated users' accounts were not disabled. Which of the following should be the IS auditors NEXT step?

Question23: Which of the following is necessary for effective risk management in IT governance?

Question24: Which of the following is the PRIMARY benefit of performing a maturity model assessment'?

Question25: An IS auditor is reviewing documentation of application systems change control and identifies several patches that were not tested before being put into production. Which of the following is the MOST significant risk from this situation?

Question26: Code changes are compiled and placed in a change folder by the developer. An implementation learn migrates changes to production from the change folder. Which of the following BEST indicates separation of duties is in place during the migration process?

Question27: An organization seeks to control costs related to storage media throughout the information life cycle while still meeting business and regulatory requirements. Which of the following is the BEST way to achieve this objective?

Question28: A data analytics team has developed a process automation bot for internal audit that scans user access to all servers in the environment and then randomly selects a sample of new users for testing. Which of the following presents the GREATEST concern with this approach?

Question29: Which of the following is MOST critical for the effective implementation of IT governance?

Question30: An IS auditor is reviewing the business requirements for the deployment of a new website Which of the following cryptographic systems would provide the BEST evidence of secure communications on the internet?

Question31: A USB device containing sensitive production data was lost by an employee and its contents were subsequently found published online Which of the following controls is the BEST recommendation to prevent a similar recurrence?

Question32: After the merger of two organizations, which of the following is the MOST important task for an IS auditor to perform?

Question33: Which cloud deployment model is MOST likely to be limited in scalability?

Question34: Which of the following is MOST important for an IS auditor to examine when reviewing an organization's privacy policy?

Question35: As part of an audit response, an auditee has concerns with the recommendations and is hesitant to implement them. Which of the following would be the BEST course of action for the IS auditor?

Question36: The members of an emergency modem response team should be:

Question37: Which of the following strategies BEST optimizes data storage without compromising data retention practices?

Question38: The PRIMARY advantage of object-oriented technology is enhanced:

Question39: An IS auditor Is reviewing an organization's business continuity plan (BCP) following a change in organizational structure with significant impact to business processes Which of the following findings should be me auditor's GREATEST concern?

Question40: Which of the following is the BEST compensating control when segregation of duties is lacking in a small IS department?

Question41: An organization is acquiring a new customer relationship management (CRM) system In which of the following would the IS auditor find the MOST relevant information on projected cost savings?

Question42: In the case of a disaster where the data center is no longer available which of the following tasks should be done FIRST?

Question43: Which of the following provides the BEST method for maintaining the security of corporate applications pushed to employee-owned mobile devices?

Question44: A company converted its payroll system from an external service to an internal package Payroll processing in April was run in parallel. To validate the completeness of data after the conversion, which of the following comparisons from the old to the new system would be MOST effective?

Question45: An IS auditor is examining a front-end sub ledger and a main ledger Which of the following would be the GREATEST concern if there are flaws in the mapping of accounts between the two systems?

Question46: Secure code reviews as part of a continuous deployment program are which type of control?

Question47: An organization is running servers with critical business application that are in an area subject to frequent but brief power outages. Knowledge of which of the following would allow the organization's management to monitor the ongoing adequacy of the uninterruptable power supply (UPS)?

Question48: Which of the following is the MOST important consideration for an organization when strategizing to comply with privacy regulations?

Question49: When responding to an ongoing Daniel of service (DoS) attack, an organization's FIRST course of action should be to:

Question50: Following an IS audit, which of the following types of risk would be MOST critical to communicate to key stakeholders?

Question51: An organization wants to change its project methodology to address increasing costs and process changes. Which of the following is the BEST methodology to use?

Question52: During a review of an organization's network threat response process, the IS auditor noticed that the majority of alerts were closed without resolution. Management responded that those alerts were unworkable doe to lack of actionable intelligence, and therefore the support team is allowed to dose them. What is the BEST way for the auditor to address this

Question53: Several unattended laptops containing sensitive customer data were stolen from personnel offices Which of the following would be an IS auditor's BEST recommendation to protect data in case of recurrence?

Question54: Which of the following is the PRIMARY concern when negotiating a contract for a hot site?

Question55: Which of the following fire suppression systems needs to be combined with an automate switch to shut down the electricity supply in the event of activation?

Question56: When reviewing tin organization's information security policies. an IS auditor should verily that the polices have been defined PRIMARILY on the basis of

Question57: Which of the following is the GREATEST risk associated with vulnerability scanning tools used to identify security weaknesses?

Question58: Which of the following is the BEST control to mitigate the malware risk associated with an instant messaging (IM) system?

Question59: An evaluation of an IT department finds that some IT goals do not align with the organization's goals. Which of the following would be the GREATEST impact?

Question60: To address issues related to privileged users identified in an IS audit, management implemented a security information and event management (SIEM) system. Which type of control is in place?

Question61: Which of the following is MOST likely to be detected by an IS auditor applying data analytic techniques?

Question62: Which of the following is MOST important for an IS auditor to consider when planning an assessment of the organization's end-user computing (EUC) program?

Question63: During the implementation of an enterprise resource planning (ERP) system, an IS auditor is reviewing the results of user acceptance testing (UAT). The auditor's PRIMARY focus should be to determine if:

Question64: What is the MOST critical finding when reviewing an organization's information security management?

Question65: An IS auditor should ensure that an application's audit trail:

Question66: During a follow-up audit, an IS auditor finds that some critical recommendations have not been addressed as management has decided to accept the risk. Which of the following is the IS auditor's BEST course of action?

Question67: Which of the following is the MOST important prerequisite for implementing a data loss prevention (DLP) tool?

Question68: A review of an organization's IT portfolio revealed several applications that are not in use. The BEST way to prevent this situation from recurring would be to implement.

Question69: Which of the following BEST enables system resiliency for an e-commerce organization that requires a low recovery time objective (RTO) and a few recovery point objective (RPO)?

Question70: Which of the following approaches would utilize data analytics to facilitate the testing of a new account creation process?

Question71: During the implementation of an upgraded enterprise resource planning (ERP) system, which of the following is the MOST important consideration for a go-live decision?

Question72: Which of the following observations would an IS auditor consider the GREATEST risk when conducting an audit of a virtual server farm for potential software vulnerabilities?

Question73: To create a digital signature in a message using asymmetric encryption, it is necessary to:

Question74: An IS auditor is reviewing security controls related to collaboration to unit responsible for intellectual property and patents. Which of the following observations should be of MOST concern to the auditor?

Question75: During a project meeting for the Implementation of an Enterprise resource planning (ERP). a new requirement Is requested by the finance department. Which of the following would BEST Indicate to an IS auditor that the resulting risk to the project has been assessed?

Question76: Which of the following should be done FIRST to develop an effective business continuity plan (BCP)?

Question77: A computer forensic audit is MOST relevant in which of the following situations?

Question78: What would be an IS auditor's BEST recommendation upon finding that a third-party IT service provider hosts the organization's human resources (HR) system in a foreign country?

Question79: Which of the following is MOST important to ensure when reviewing a global organization's controls to protect data held on its IT infrastructure across all of its locations?

Question80: The PRIMARY focus of audit follow-up reports should be to:

Question81: Which of the following metrics would be MOST useful to an IS auditor when assessing the resilience of an application programming interface (API)?

Question82: Which of the following is MOST important to ensure when planning a black box penetration test?

Question83: Which of the following is the FIRST step in initiating a data classification program?

Question84: Which of the following are BEST suited for continuous auditing?

Question85: Which of the following is MOST important for an effective control self-assessment (CSA) program?

Question86: Which of the following would be the MOST useful metric for management to consider when reviewing a project portfolio?

Question87: Due to a high volume of customer orders, an organization plans to implement a new application for customers to use for online ordering Which type of testing is MOST important to ensure the security of the application prior to go-live?

Question88: An IS auditor has discovered that unauthorized customer management software was installed on a workstation. The auditor determines the software has been uploading customer data to an external party Which of the following is the IS auditor's BEST course of action?

Question89: Which of the following should an IS auditor review FIRST when planning a customer data privacy audit?

Question90: An IS auditor is reviewing the perimeter security design of a network Which of the following provides the GREATEST assurance that both incoming and outgoing Internet traffic is controlled?

Question91: Which of the following should be done FIRST when planning a penetration test?

Question92: Which of the following provides the MOST assurance over the completeness and accuracy of loan application processing with respect to the implementation of a new system?

Question93: The PRIMARY objective of IT service level management is to.

Question94: Which of the following would MOST likely impair the independence of the IS auditor when performing a post-implementation review of an application system?

Question95: An IS auditof notes the transaction processing times in an order processing system have significantly increased after a major release Which of the following should the IS auditor review FIRST?

Question96: As part of business continuity planning, which of the following is MOST important to assess when conducting a business impact analysis (B1A)?

Question97: Which of the following is a challenge in developing a service level agreement (SLA) for network services?

Question98: Which of the following testing methods is MOST appropriate for assessing whether system integrity has been maintained after changes have been made?

Question99: When is the BEST time to commence continuity planning for a new application system?

Question100: Which of the following will MOST likely compromise the control provided by a digital signature created using RSA encryption?

Question101: An IS auditor performing a review of a newly purchased software program notes that an escrow agreement has been executed for acquiring the source code. What is MOST important for the IS auditor to verify?

Question102: Which of the following would be an appropriate role of internal audit in helping to establish an organization's privacy program?

Question103: While planning a review of IT governance, the IS auditor is MOST likely to:

Question104: Which of the following would be MOST time and cost efficient when performing a control self-assessment (CSA) for an organization with a large number of widely dispersed employees?

Question105: A bank's web-hosting provider has just completed an internal IT security audit and provides only a summary of the findings to the bank's auditor. Which of the following should be the bank's GREATEST concern?

Question106: Which of the following is MOST important when creating a forensic image of a hard drive?

Question107: Which of the following should be the PRIMARY role of an internal audit function in the management of identified business risks?

Question108: An IS auditor is reviewing an industrial control system (ICS) that uses older unsupported technology in the scope of an upcoming audit. What should the auditor consider the MOST significant concern?

Question109: During an operational audit of a biometric system used to control physical access, which of the following should be of GREATEST concern to an IS auditor?

Question110: The implementation of an IT governance framework requires that the board of directors of an organization:

Question111: Which of the following is the GREATEST concern associated with a high number of IT policy exceptions approved by management?

Question112: Which of the following provides the MOST comprehensive description of IT's role in an organization?

Question113: Which of the following is the PRIMARY benefit of continuous auditing?

Question114: A warehouse employee of a retail company has been able to conceal the theft of inventory items by entering adjustments of either damaged or lost stock items to the inventory system Which control would have BEST prevented this type of fraud in a retail environment?

Question115: In which phase of penetration testing would host detection and domain name system (DNS) interrogation be performed?

Question116: Which of the following should be defined in an audit charter?

Question117: What is BEST for an IS auditor lo review when assessing the effectiveness of changes recently made to processes and tools related to an organization's business continuity plan (BCP)?

Question118: Which of the following is MOST likely to ensure that an organization's systems development meets its business objectives?

Question119: Which of the following is the MOST effective control to mitigate unintentional misuse of authorized access?

Question120: An IS auditor is analysing a sample of assesses recorded on the system log of an application. The auditor intends to launch an intensive investigation if one exception is found. Which sampling method would be appropriate?

Question121: Of the following, who are the MOST appropriate staff for ensuring the alignment of user authorization tables with approved authorization forms?

Question122: Which of the following should be the PRIMARY basis for procedures to dispose of data securely?

Question123: Which of the following would be of GREATEST concern to an IS auditor reviewing an organization's security incident handling procedures?

Question124: Which of the following is the MAIN risk associated with adding a new system functionality during the development phase without following a project change management process?

Question125: IS management has recently disabled certain referential integrity controls in the database management system (DBMS) software to provide users increased query performance Which of the following controls win MOST effectively compensate for the lack of referential integrity?

Question126: Which of the following is the BEST control to help prevent sensitive data leaving an organization via email?

Question127: Which of the following is MOST helpful in preventing a systems failure from occurring when an application is replaced using the abrupt changeover technique?

Question128: Which of the following is the PRIMARY advantage of using virtualization technology for corporate applications?

Question129: Which of the following would be the BEST Indicator of the effectiveness of an organization's portfolio management program?

Question130: Which of the following is the BEST use of a balanced scorecard when evaluating IT performance?

Question131: The PRIMARY benefit of information asset classification is that it:

Question132: In an environment that automatically reports all program changes. which of the following is the MOST efficient way to detect unauthorized changes to production programs?

Question133: Which of the following reports would provide the GREATEST assurance to an IS auditor about the controls of a third party that processes critical data for the organization?

Question134: Which of the following is MOST important for an organization to complete prior to developing its disaster recovery plan (DRP)?

Question135: When evaluating the ability of a disaster recovery plan (DRP) to enable the recovery of IT processing capabilities, it is MOST important for the IS auditor to verify the plan is:

Question136: Which of the following should be of GREATEST concern to an IS auditor conducting an audit of an organization that recently experienced a ransomware attack?

Question137: The PRIMARY benefit to using a dry-pipe fire-suppression system rather than a wet-pipe system is that a dry-pipe system

Question138: Which of the following is the BEST source of information for assessing the effectiveness of IT process monitoring?

Question139: Which of the following should be of GREATEST concern for an IS auditor reviewing an organization's bring your own device (BYOD) policy?

Question140: An IS auditor is conducting a post-implementation review of an enterprise resource planning (ERP) system End users indicated concerns with the accuracy of critical automatic calculations made by the system. The auditor's FIRST course of action should be to:

Question141: When determining whether a project in the design phase will meet organizational objectives, what is BEST to compare against the business case?

Question142: An organization is experiencing a large number of phishing attacks targeting employees and executives following a press release announcing an acquisition Which of the following would provide the BEST defense against these attacks?

Question143: An organization needs to comply with data privacy regulations forbidding the display of personally identifiable information (Pll) on customer bills or receipts However it is a business requirement to display at least one attribute so that customers can verify the bills or receipts are intended for them What is the BEST recommendation?

Question144: During the planning stage of a compliance audit an IS auditor discovers that a bank's Inventory of compliance requirements does not include recent regulatory changes related to managing data risk. What should the auditor do FIRST?

Question145: The MOST important function of a business continuity plan (BCP) is to.

Question146: An organization is considering allowing users to conned personal devices to the corporate network. Which of the following should be done FIRST?

Question147: An IS auditor is planning an audit of an organization's accounts payable processes. Which of the following controls is I to assess m the audit?

Question148: When auditing the closing stages of a system development project, which of the following should be the MOST important consideration?

Question149: An incorrect version of source code was amended by a development team, This MOST likely indicates a weakness in:

Question150: Which of the following would BEST enable an organization to address the security risks associated with a recently implemented bring your own device (BYOD) strategy?

Question151: An organization's enterprise architecture (EA) department decides to change a legacy system's components while maintaining its original functionality Which of the following is MOST important for an IS auditor to understand when reviewing this decision?

Question152: Which of the following metrics would BEST measure the agility of an organization's IT function?

Question153: Invoking a business continuity plan (BCP) is demonstrating which type of control?

Question154: Which of the following is the PRIMARY reason for using a digital signature?