Winter Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: v4s65

  1. Home
  2. Isaca
  3. Isaca Certification
  4. CISA - Certified Information Systems Auditor

CISA Exam Dumps - Certified Information Systems Auditor

Go to page:
Question # 137

An IS auditor reviewing the system development life cycle (SDLC) finds there is no requirement for business cases. Which of the following should be offGREATEST concern to the organization?

A.

Vendor selection criteria are not sufficiently evaluated.

B.

Business resources have not been optimally assigned.

C.

Business impacts of projects are not adequately analyzed.

D.

Project costs exceed established budgets.

Full Access
Question # 138

A startup organization wants to develop a data loss prevention (DLP) program. The FIRST step should be to implement:

A.

Security awareness training

B.

Data encryption

C.

Data classification

D.

Access controls

Full Access
Question # 139

Which of the following would be MOST helpful to an IS auditor performing a risk assessment of an application programming interface (API) that feeds credit scores from a well-known commercial credit agency into an organizational system?

A.

A data dictionary of the transferred data

B.

A technical design document for the interface configuration

C.

The most recent audit report from the credit agency

D.

The approved business case for the API

Full Access
Question # 140

Who is PRIMARILY responsible for the design of IT controls to meet control objectives?

A.

Business management

B.

Internal auditor

C.

Risk management

D.

ITC manager

Full Access
Question # 141

An IS audit team is evaluating documentation of the most recent application user access review. It is determined that the user list was not system generated. Which of the following should be of

MOST concern?

A.

Confidentiality of the user list

B.

Timeliness of the user list review

C.

Completeness of the user list

D.

Availability of the user list

Full Access
Question # 142

Which of the following should be the GREATEST concern to an IS auditor reviewing an organization's job scheduling practices?

A.

Most jobs are run manually.

B.

Jobs are executed during working hours.

C.

Job dependencies are undefined.

D.

Job processing procedures are missing.

Full Access
Question # 143

An IS auditor is assessing the adequacy of management's remediation action plan. Which of the following should be the MOST important consideration?

A.

Plan approval by the audit committee

B.

Impacts on future audit work

C.

Criticality of audit findings

D.

Potential cost savings

Full Access
Question # 144

Which of the following would be MOST useful to an IS auditor when making recommendations to enable continual improvement of IT processes over time?

A.

Benchmarking studies

B.

Maturity model

C.

IT risk register

D.

IT incident log

Full Access
Go to page:

Hot Exams

ADM-201 Dumps
Platform-App-Builder Dumps
AZ-500 Dumps
350-701 Dumps
SY0-601 Dumps
NCSE-Core Dumps
PDP9 Dumps
DP-203 Dumps
AZ-700 Dumps
NSE7_EFW-7.0 Dumps
Integration-Architect Dumps
CS0-003 Dumps