CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 159
1. Which of the following is of greatest concern to the IS auditor?
A) Failure to report a successful attack on the network
B) Failure to prevent a successful attack on the network
C) Failure to recover from a successful attack on the network
D) Failure to detect a successful attack on the network
2. An integrated test facility is not considered a useful audit tool because it cannot compare processing output with independently calculated data. True or false?
A) True
B) False
C)
D)
3. An advantage of a continuous audit approach is that it can improve system security when used in time-sharing environments that process a large number of transactions. True or false?
A) True
B) False
C)
D)
4. If an IS auditor finds evidence of risk involved in not implementing proper segregation of duties, such as having the security administrator perform an operations function, what is the auditor's primary responsibility?
A) To advise senior management.
B) To reassign job functions to eliminate potential fraud.
C) To implement compensator controls.
D) Segregation of duties is an administrative control not considered by an IS auditor.
5. Who is responsible for implementing cost-effective controls in an automated system?
A) Security policy administrators
B) Business unit management
C) Senior management
D) Board of directors
A) Failure to report a successful attack on the network
B) Failure to prevent a successful attack on the network
C) Failure to recover from a successful attack on the network
D) Failure to detect a successful attack on the network
2. An integrated test facility is not considered a useful audit tool because it cannot compare processing output with independently calculated data. True or false?
A) True
B) False
C)
D)
3. An advantage of a continuous audit approach is that it can improve system security when used in time-sharing environments that process a large number of transactions. True or false?
A) True
B) False
C)
D)
4. If an IS auditor finds evidence of risk involved in not implementing proper segregation of duties, such as having the security administrator perform an operations function, what is the auditor's primary responsibility?
A) To advise senior management.
B) To reassign job functions to eliminate potential fraud.
C) To implement compensator controls.
D) Segregation of duties is an administrative control not considered by an IS auditor.
5. Who is responsible for implementing cost-effective controls in an automated system?
A) Security policy administrators
B) Business unit management
C) Senior management
D) Board of directors
1. Right Answer: A
Explanation: Lack of reporting of a successful attack on the network is a great concern to an IS auditor.
2. Right Answer: B
Explanation: An integrated test facility is considered a useful audit tool because it compares processing output with independently calculated data.
3. Right Answer: A
Explanation: It is true that an advantage of a continuous audit approach is that it can improve system security when used in time-sharing environments that process a large number of transactions.
4. Right Answer: A
Explanation: An IS auditor's primary responsibility is to advise senior management of the risk involved in not implementing proper segregation of duties, such as having the security administrator perform an operations function.
5. Right Answer: B
Explanation: Business unit management is responsible for implementing cost-effective controls in an automated system.
Explanation: Lack of reporting of a successful attack on the network is a great concern to an IS auditor.
2. Right Answer: B
Explanation: An integrated test facility is considered a useful audit tool because it compares processing output with independently calculated data.
3. Right Answer: A
Explanation: It is true that an advantage of a continuous audit approach is that it can improve system security when used in time-sharing environments that process a large number of transactions.
4. Right Answer: A
Explanation: An IS auditor's primary responsibility is to advise senior management of the risk involved in not implementing proper segregation of duties, such as having the security administrator perform an operations function.
5. Right Answer: B
Explanation: Business unit management is responsible for implementing cost-effective controls in an automated system.
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment