CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 160
1. Why does an IS auditor review an organization chart?
A) To optimize the responsibilities and authority of individuals
B) To control the responsibilities and authority of individuals
C) To better understand the responsibilities and authority of individuals
D) To identify project sponsors
2. Ensuring that security and control policies support business and IT objectives is a primary objective of:
A) An IT security policies audit
B) A processing audit
C) A software audit
D) A vulnerability assessment
3. When auditing third-party service providers, an IS auditor should be concerned with which of the following?
A) Ownership of the programs and files
B) A statement of due care and confidentiality, and the capability for continued service of the service provider in the event of a disaster
C) A statement of due care
D) Ownership of programs and files, a statement of due care and confidentiality, and the capability for continued service of the service provider in the event of a disaster
4. When performing an IS strategy audit, an IS auditor should review both short-term (one- year) and long-term (three-to five-year) IS strategies, interview appropriate corporate management personnel, and ensure that the external environment has been considered. The auditor should especially focus on procedures in an audit of IS strategy. True or false?
A) True
B) False
C)
D)
5. What process allows IS management to determine whether the activities of the organization differ from the planned or expected levels?
A) Business impact assessment
B) Risk assessment
C) IS assessment methods
D) Key performance indicators (KPIs)
A) To optimize the responsibilities and authority of individuals
B) To control the responsibilities and authority of individuals
C) To better understand the responsibilities and authority of individuals
D) To identify project sponsors
2. Ensuring that security and control policies support business and IT objectives is a primary objective of:
A) An IT security policies audit
B) A processing audit
C) A software audit
D) A vulnerability assessment
3. When auditing third-party service providers, an IS auditor should be concerned with which of the following?
A) Ownership of the programs and files
B) A statement of due care and confidentiality, and the capability for continued service of the service provider in the event of a disaster
C) A statement of due care
D) Ownership of programs and files, a statement of due care and confidentiality, and the capability for continued service of the service provider in the event of a disaster
4. When performing an IS strategy audit, an IS auditor should review both short-term (one- year) and long-term (three-to five-year) IS strategies, interview appropriate corporate management personnel, and ensure that the external environment has been considered. The auditor should especially focus on procedures in an audit of IS strategy. True or false?
A) True
B) False
C)
D)
5. What process allows IS management to determine whether the activities of the organization differ from the planned or expected levels?
A) Business impact assessment
B) Risk assessment
C) IS assessment methods
D) Key performance indicators (KPIs)
1. Right Answer: C
Explanation: The primary reason an IS auditor reviews an organization chart is to better understand the responsibilities and authority of individuals.
2. Right Answer: A
Explanation: Ensuring that security and control policies support business and IT objectives is a primary objective of an IT security policies audit.
3. Right Answer: D
Explanation: When auditing third-party service providers, an auditor should be concerned with ownership of programs and files, a statement of due care and confidentiality, and the capability for continued service of the service provider in the event of a disaster.
4. Right Answer: B
Explanation: When performing an IS strategy audit, an IS auditor should review both short-term (one-year) and long-term (three-to five-year) IS strategies, interview appropriate corporate management personnel, and ensure that the external environment has been considered.
5. Right Answer: C
Explanation: IS assessment methods allow IS management to determine whether the activities of the organization differ from the planned or expected levels.
Explanation: The primary reason an IS auditor reviews an organization chart is to better understand the responsibilities and authority of individuals.
2. Right Answer: A
Explanation: Ensuring that security and control policies support business and IT objectives is a primary objective of an IT security policies audit.
3. Right Answer: D
Explanation: When auditing third-party service providers, an auditor should be concerned with ownership of programs and files, a statement of due care and confidentiality, and the capability for continued service of the service provider in the event of a disaster.
4. Right Answer: B
Explanation: When performing an IS strategy audit, an IS auditor should review both short-term (one-year) and long-term (three-to five-year) IS strategies, interview appropriate corporate management personnel, and ensure that the external environment has been considered.
5. Right Answer: C
Explanation: IS assessment methods allow IS management to determine whether the activities of the organization differ from the planned or expected levels.
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment