CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 197
1. When an employee is terminated from service, the MOST important action is to:
A) hand over all of the employee's files to another designated employee.
B) complete a backup of the employee's work.
C) notify other employees of the termination.
D) disable the employee's logical access.
2. Many organizations require an employee to take a mandatory vacation (holiday) of a week or more to:
A) ensure the employee maintains a good quality of life, which will lead to greater productivity.
B) reduce the opportunity for an employee to commit an improper or illegal act.
C) provide proper cross-training for another employee.
D) eliminate the potential disruption caused when an employee takes vacation one day at a time.
3. A local area network (LAN) administrator normally would be restricted from:
A) having end-user responsibilities.
B) reporting to the end-user manager
C) having programming responsibilities.
D) being responsible for LAN security administration.
4. A long-term IS employee with a strong technical background and broad managerial experience has applied for a vacant position in the IS audit department.Determining whether to hire this individual for this position should be based on the individual's experience and:
A) length of service, since this will help ensure technical competence.
B) age, as training in audit techniques may be impractical.
C) IS knowledge, since this will bring enhanced credibility to the audit function.
D) ability, as an IS auditor, to be independent of existing IS relationships.
5. An IS auditor should be concerned when a telecommunication analyst:
A) monitors systems performance and tracks problems resulting from program changes.
B) reviews network load requirements in terms of current and future transaction volumes.
C) assesses the impact of the network load on terminal response times and network data transfer rates.
D) recommends network balancing procedures and improvements.
A) hand over all of the employee's files to another designated employee.
B) complete a backup of the employee's work.
C) notify other employees of the termination.
D) disable the employee's logical access.
2. Many organizations require an employee to take a mandatory vacation (holiday) of a week or more to:
A) ensure the employee maintains a good quality of life, which will lead to greater productivity.
B) reduce the opportunity for an employee to commit an improper or illegal act.
C) provide proper cross-training for another employee.
D) eliminate the potential disruption caused when an employee takes vacation one day at a time.
3. A local area network (LAN) administrator normally would be restricted from:
A) having end-user responsibilities.
B) reporting to the end-user manager
C) having programming responsibilities.
D) being responsible for LAN security administration.
4. A long-term IS employee with a strong technical background and broad managerial experience has applied for a vacant position in the IS audit department.Determining whether to hire this individual for this position should be based on the individual's experience and:
A) length of service, since this will help ensure technical competence.
B) age, as training in audit techniques may be impractical.
C) IS knowledge, since this will bring enhanced credibility to the audit function.
D) ability, as an IS auditor, to be independent of existing IS relationships.
5. An IS auditor should be concerned when a telecommunication analyst:
A) monitors systems performance and tracks problems resulting from program changes.
B) reviews network load requirements in terms of current and future transaction volumes.
C) assesses the impact of the network load on terminal response times and network data transfer rates.
D) recommends network balancing procedures and improvements.
1. Right Answer: D
Explanation: There is a probability that a terminated employee may misuse access rights; therefore, disabling the terminated employee's logical access is the most important action to take. All the work of the terminated employee needs to be handed over to a designated employee; however, this should be performed after implementing choice D. All the work of the terminated employee needs to be backed up and the employees need to be notified of the termination of the employee, but this should not precede the action in choice D.
2. Right Answer: B
Explanation: Required vacations/holidays of a week or more in duration in which someone other than the regular employee performs the job function is often mandatory for sensitive positions, as this reduces the opportunity to commit improper or illegal acts. During this time, it may be possible to discover any fraudulent activity that was taking place. Choices A, C and D could all be organizational benefits from a mandatory vacation policy, but they are not the reason why the policy is established.
3. Right Answer: C
Explanation: A LAN administrator should not have programming responsibilities but may have end-user responsibilities. The LAN administrator may report to the director of theIPF or, in a decentralized operation, to the end-user manager. In small organizations, the LAN administrator may also be responsible for security administration over the LAN.
4. Right Answer: D
Explanation: Independence should be continually assessed by the auditor and management. This assessment should consider such factors as changes in personal relationships, financial interests, and prior job assignments and responsibilities. The fact that the employee has worked in IS for many years may not in itself ensure credibility. The audit department's needs should be defined and any candidate should be evaluated against those requirements. The length of service will not ensure technical competency. Evaluating an individual's qualifications based on the age of the individual is not a good criterion and is illegal in many parts of the world.
5. Right Answer: A
Explanation: The responsibilities of a telecommunications analyst include reviewing network load requirements in terms of current and future transaction volumes {choice B), assessing the impact of network load or terminal response times and network data transfer rates (choice C), and recommending network balancing procedures and improvements (choice D). Monitoring systems performance and tracking problems as a result of program changes {choice A) would put the analyst in a self- monitoring role.
Explanation: There is a probability that a terminated employee may misuse access rights; therefore, disabling the terminated employee's logical access is the most important action to take. All the work of the terminated employee needs to be handed over to a designated employee; however, this should be performed after implementing choice D. All the work of the terminated employee needs to be backed up and the employees need to be notified of the termination of the employee, but this should not precede the action in choice D.
2. Right Answer: B
Explanation: Required vacations/holidays of a week or more in duration in which someone other than the regular employee performs the job function is often mandatory for sensitive positions, as this reduces the opportunity to commit improper or illegal acts. During this time, it may be possible to discover any fraudulent activity that was taking place. Choices A, C and D could all be organizational benefits from a mandatory vacation policy, but they are not the reason why the policy is established.
3. Right Answer: C
Explanation: A LAN administrator should not have programming responsibilities but may have end-user responsibilities. The LAN administrator may report to the director of theIPF or, in a decentralized operation, to the end-user manager. In small organizations, the LAN administrator may also be responsible for security administration over the LAN.
4. Right Answer: D
Explanation: Independence should be continually assessed by the auditor and management. This assessment should consider such factors as changes in personal relationships, financial interests, and prior job assignments and responsibilities. The fact that the employee has worked in IS for many years may not in itself ensure credibility. The audit department's needs should be defined and any candidate should be evaluated against those requirements. The length of service will not ensure technical competency. Evaluating an individual's qualifications based on the age of the individual is not a good criterion and is illegal in many parts of the world.
5. Right Answer: A
Explanation: The responsibilities of a telecommunications analyst include reviewing network load requirements in terms of current and future transaction volumes {choice B), assessing the impact of network load or terminal response times and network data transfer rates (choice C), and recommending network balancing procedures and improvements (choice D). Monitoring systems performance and tracking problems as a result of program changes {choice A) would put the analyst in a self- monitoring role.
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment