Certified Information Systems Auditor CISA Tests Bundle Set

1. An IS auditor should expect which of the following items to be included in the request for proposal (RFP) when IS is procuring services from an independent service provider (ISP)? A References from other customers B Service level agreement (SLA) template C Maintenance agreement D C...

CISA |1495 Questions with correct answers|

In a public key infrastructure (PKI), which of the following may be relied upon to prove that an online transaction was authorized by a specific customer? Correct A. Nonrepudiation B. Encryption C. Authentication D. Integrity . Correct Answer-You are correct, the answer is A. ...

Who is responsible for imposing an IT governance model encompassing IT strategy, information security, and formal enterprise architectural mandates? Correct Answer-IT executives and the Board of Directors The party that performs strategic planning, addresses near-term and long-term requirements a...

Gap Analysis Correct Answer-Gap Analysis would be the best method to identify issues that need to be addressed in the reengineering process. Gap analysis indicates which parts of current processes conform to best practices (desired state) and which do not. Application Gateway Correct Answer-An ap...

Interviewing and Observing Personnel Correct Answer-Actual Functions - An adequate test to ensure that the individual who is assigned and authorized to perform a particular function is the person who is actually doing the job. Actual Processes and Procedures - allows the IS auditor to gain evidenc...

Q1) Which of the following is the MOST efficient and sufficiently reliable way to test the design effectiveness of a change control process? A) Interview personnel in charge of the change control process B) Perform an end-to-end walk-through of the process C) Test a sample of authorized cha...

It is important to understand the organization and its environment in order to effectively pinpoint the organization's key risk. One specific factor is an understanding of: Correct Answer-The organization's selection and application of policies and procedures Of the following, which is not a wa...

Q3) During the review of an in-house developed application, the GREATEST concern to an IS auditor is if a: A) manager approves a change request and then reviews it in production. B) programmer codes a change in the development environment and tests it in the test environment. C) manager i...

CISA Exam Prep questions with correct answers

The objective of concurrency control in a database system is to: Select an answer: A. restrict updating of the database to authorized users. B. prevent integrity problems when two processes attempt to update the same data at the same time. C. prevent inadvertent or unauthorized disclosure of da...

Q01) The success of control self-assessment depends highly on: A) assigning staff managers, the responsibility for building controls. B) the implementation of a stringent control policy and rule-driven controls. C) line managers assuming a portion of the responsibility for control monitor...

CISA - All-in-One Exam Guide questions with correct answers

CISA Section 1 questions with correct answers