CISA BUNDLED exam 2023 with 100% correct answers

Q1) Which of the following is the MOST efficient and sufficiently reliable way to test the design effectiveness of a change control process? A) Interview personnel in charge of the change control process B) Perform an end-to-end walk-through of the process C) Test a sample of authorized cha...

Who is responsible for imposing an IT governance model encompassing IT strategy, information security, and formal enterprise architectural mandates? - correct answer -IT executives and the Board of Directors The party that performs strategic planning, addresses near-term and long-term requirement...

The objective of concurrency control in a database system is to: Select an answer: A. restrict updating of the database to authorized users. B. prevent integrity problems when two processes attempt to update the same data at the same time. C. prevent inadvertent or unauthorized disclosure of da...

In a public key infrastructure (PKI), which of the following may be relied upon to prove that an online transaction was authorized by a specific customer? Correct A. Nonrepudiation B. Encryption C. Authentication D. Integrity . - correct answerYou are correct, the answer is A. ...

Q3) During the review of an in-house developed application, the GREATEST concern to an IS auditor is if a: A) manager approves a change request and then reviews it in production. B) programmer codes a change in the development environment and tests it in the test environment. C) manager i...

Planning, fieldwork/documentation, and reporting/follow-up - correct answer -Major phases of the typical audit process Audit Charter - correct answer -An overarching document that covers the entire scope of audit activities in an entire entity. Engagement Letter - correct answer -More focused ...

IT governance is most concerned with A. Security policy B. IT policy C. IT strategy D. IT executive compensation - correct answer C. IT governance is the mechanism through which IT strategy is established, controlled, and monitored through the balanced scorecard. Long-term and other strategic de...

Abend - correct answer -Abnormal end to a computer job; termination of a task prior to its completion because of an error condition that cannot be resolved by recovery facilities while the task is executing Acceptable use policy - correct answer -Establishes an agreement between users and enterpr...

5 Tasks within the domain covering the process of auditing information systems - correct answer -1. Develop and implement a risk-based IT audit strategy in compliance with IT audit standards to ensure that key areas are included 2. Plan specific audits to determine whether information systems are p...

Gap Analysis - correct answer -Gap Analysis would be the best method to identify issues that need to be addressed in the reengineering process. Gap analysis indicates which parts of current processes conform to best practices (desired state) and which do not. Application Gateway - correct answer ...

1. An IS auditor should expect which of the following items to be included in the request for proposal (RFP) when IS is procuring services from an independent service provider (ISP)? A References from other customers B Service level agreement (SLA) template C Maintenance agreement D C...

Indemnity Clause - correct answer -a contractual transfer of risk between two contractual parties generally to prevent loss or compensate for a loss which may occur as a result of a specified event Portfolio Management - correct answer -Assist in the definition, prioritization, approval and runni...