CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 112
1. During the extraction and transfer process of data from an application database to an enterprise data warehouse, some of the fields were not picked up in the extraction process and therefore did not end up in the data warehouse. Which of the following is the GREATEST concern with this situation?
A) Costs associated with correcting the process may exceed budget
B) Transaction errors may occur within the application
C) Management decisions may be based on incorrect data
D) Management reporting could be delayed
2. Which of the following is the MOST important consideration when investigating a security breach of an e-commerce application?
A) Chain of custody
B) Skill set of the response team
C) Notifications to law enforcement
D) Procedures to analyze evidence
3. The risk of communication failure in an e-commerce environment is BEST minimized through the use of:
A) alternative or diverse routing
B) compression software to minimize transmission duration
C) a packet filtering firewall to reroute messages
D) functional or message acknowledgments
4. During the testing of the business continuity plan (BCP), which of the following methods of results analysis provides the BEST assurance that the plan is workable?
A) Measurement of accuracy
B) Elapsed time for completion of critical tasks
C) Quantitatively measuring the results of the test
D) Evaluation of the observed test results
5. Which of the following statements regarding an off-site information processing facility is TRUE?
A) It should have the same amount of physical access restrictions as the primary processing site.
B) It should be located in proximity to the originating site so that it can quickly be made operational.
C) It should be easily identified from the outside so in the event of an emergency it can be easily found.
D) Need not have the same level of environmental monitoring as the originating site since this would be cost prohibitive.
A) Costs associated with correcting the process may exceed budget
B) Transaction errors may occur within the application
C) Management decisions may be based on incorrect data
D) Management reporting could be delayed
2. Which of the following is the MOST important consideration when investigating a security breach of an e-commerce application?
A) Chain of custody
B) Skill set of the response team
C) Notifications to law enforcement
D) Procedures to analyze evidence
3. The risk of communication failure in an e-commerce environment is BEST minimized through the use of:
A) alternative or diverse routing
B) compression software to minimize transmission duration
C) a packet filtering firewall to reroute messages
D) functional or message acknowledgments
4. During the testing of the business continuity plan (BCP), which of the following methods of results analysis provides the BEST assurance that the plan is workable?
A) Measurement of accuracy
B) Elapsed time for completion of critical tasks
C) Quantitatively measuring the results of the test
D) Evaluation of the observed test results
5. Which of the following statements regarding an off-site information processing facility is TRUE?
A) It should have the same amount of physical access restrictions as the primary processing site.
B) It should be located in proximity to the originating site so that it can quickly be made operational.
C) It should be easily identified from the outside so in the event of an emergency it can be easily found.
D) Need not have the same level of environmental monitoring as the originating site since this would be cost prohibitive.
1. Right Answer: B
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation: It is important to have ways to measure the success of the plan and tests against the stated objectives. Therefore, results must be quantitatively gauged as opposed to an evaluation based only on observation. Quantitatively measuring the results of the test involves a generic statement measuring all the activities performed during BCP, which gives the best assurance of an effective plan. Although choices A and B are also quantitative, they relate to specific areas, or an analysis of results from one viewpoint, namely the accuracy of the results and the elapsed time.Source: Information Systems Audit and Control Association, Certified Information Systems Auditor 2002 review manual, Chapter 5: Disaster Recovery andBusiness Continuity (page 269).
5. Right Answer: A
Explanation: It is very important that the offsite has the same restrictions in order to avoided misuse.The following answers are incorrect because:It should be located in proximity to the originating site so that it can quickly be made operational is incorrect as the offsite is also subject to the same disaster as of the primary site.It should be easily identified from the outside so in the event of an emergency it can be easily found is also incorrect as it should not be easily identified to prevent intentional sabotage.Need not have the same level of environmental monitoring as the originating site since this would be cost prohibitive is also incorrect as it should be like its primary site.Reference: Information Systems Audit and Control Association, Certified Information Systems Auditor 2002 review manual, chapter 5: Disaster Recovery andBusiness Continuity (page 265).
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: A
Explanation:
4. Right Answer: C
Explanation: It is important to have ways to measure the success of the plan and tests against the stated objectives. Therefore, results must be quantitatively gauged as opposed to an evaluation based only on observation. Quantitatively measuring the results of the test involves a generic statement measuring all the activities performed during BCP, which gives the best assurance of an effective plan. Although choices A and B are also quantitative, they relate to specific areas, or an analysis of results from one viewpoint, namely the accuracy of the results and the elapsed time.Source: Information Systems Audit and Control Association, Certified Information Systems Auditor 2002 review manual, Chapter 5: Disaster Recovery andBusiness Continuity (page 269).
5. Right Answer: A
Explanation: It is very important that the offsite has the same restrictions in order to avoided misuse.The following answers are incorrect because:It should be located in proximity to the originating site so that it can quickly be made operational is incorrect as the offsite is also subject to the same disaster as of the primary site.It should be easily identified from the outside so in the event of an emergency it can be easily found is also incorrect as it should not be easily identified to prevent intentional sabotage.Need not have the same level of environmental monitoring as the originating site since this would be cost prohibitive is also incorrect as it should be like its primary site.Reference: Information Systems Audit and Control Association, Certified Information Systems Auditor 2002 review manual, chapter 5: Disaster Recovery andBusiness Continuity (page 265).
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment