Garantie de satisfaction à 100% Disponible immédiatement après paiement En ligne et en PDF Tu n'es attaché à rien
logo-home
Recherché précédemment par vous
Recherché précédemment par vous
logo
CISA Study Notes Questions & 100% Correct Answers €12,79   Ajouter au panier
Accédez rapidement à
Aperçu
  2.  
  3. CISA
  4.  
  5. CISA

Examen

CISA Study Notes Questions & 100% Correct Answers
 6 vues  0 fois vendu
  • Cours
  • CISA
  • Établissement
  • CISA

Who is responsible for imposing an IT governance model encompassing IT strategy, information security, and formal enterprise architectural mandates? :~~ IT executives and the Board of Directors The party that performs strategic planning, addresses near-term and long-term requirements alignin...

[Montrer plus]

Aperçu 4 sur 38  pages

Infos sur le Document

  • 9 septembre 2024
  • 38
  • 2024/2025
  • Examen
  • Questions et réponses

Sujets

  • cisa study notes questions 100 correct answers
  • who is responsible for imposing an it governance m

École, étude et sujet

  • CISA
  • CISA

Vendeur

avatar-seller
ExamArsenal

Avis reçus

Aperçu du contenu

1 | P a g e | © copyright 2024/2025 | Grade A+




CISA Study Notes Questions & 100%
Correct Answers
Who is responsible for imposing an IT governance model encompassing IT strategy,

information security, and formal enterprise architectural mandates?

✓ :~~ IT executives and the Board of Directors




The party that performs strategic planning, addresses near-term and long-term

requirements aligning business objectives, and technology strategies.

✓ :~~ The Steering Committee




What three elements allow validation of business practices against acceptable

measures of regulatory compliance, performance, and standard operational

guidelines.

✓ :~~ (1.) Polices (2.) Procedures (3.) Standards




What activity involves the identification of potential risk and the appropriate

response for each threat based on impact assessment using qualitative and/or

quantitative measures for an enterprise-wide risk management strategy?


✓ :~~ Risk Management




IT Governance is most concerned with....




Master01 | September, 2024/2025 | Latest update

, 2 | P a g e | © copyright 2024/2025 | Grade A+


✓ :~~ IT Strategy




Describe the advantages of outsourcing.


✓ :~~ Outsourcing is an opportunity for the organization to focus on core

competencies. When an organization oursources a business function, it no

longer needs to be concerned about training employees in that function.

Outsources does not always reduce costs, because cost reduction is not

always the primary goal of oursourcing.




An external IS auditor has discovered a segregation of duties issue in a high value

process. What is the best action for the auditor to take?

✓ :~~ The external auditor can only document the finding in the audit report.

An external auditor is not in a position to implement controls.




An organization has chosen to open a business office in another country where

labor costs are lower and has hired workers to perform business functions there.

This organization has done what?

✓ :~~ The organization is insourcing - while they may have opened the office

in a foreign country, they have hired locals to do the work as opposed to

contracting with a third party.




An organization has discovered that some of its employees have criminal records.

What is the best course of action for the organization to take?


Master01 | September, 2024/2025 | Latest update

, 3 | P a g e | © copyright 2024/2025 | Grade A+


✓ :~~ The organization should have background checks performed on all of its

existing employees and also begin instituting background checks of all new-

hires. It is not necessarily required to terminate the employees - their

offenses may not warrant termination.




The options for Risk Treatment are:

✓ :~~ Risk Mitigation Risk Avoidance Risk Transfer Risk Acceptance




Annualized Loss Expectance (ALE) is defined as:


✓ :~~ ALE is the annual expected loss to an asset. It is calculated as the

single loss expectancy (SLE) X the annualized rate of occurrence (ARO.)




A quantitative risk analysis is more difficult to perform because:

✓ :~~ It is difficult to get accurate figures on the frequency of specific

threats. It is difficult to determine the probability that a threat will be

realized. It is relatively easy to determine the value of an asset and the

impact of a threat event.




An IS auditor is examining the IT standards document for an organization that was

last reviewed two years earlier. The best course of action for the IS auditor is:

✓ :~~ Report that the IT standards are not being reviewed often enough. Two

years is far too long between reviews of IT standards.




Master01 | September, 2024/2025 | Latest update

, 4 | P a g e | © copyright 2024/2025 | Grade A+


The purpose of a Balanced Scorecard is:

✓ :~~ To measure organizational performance and effectiveness against

strategic goals.




The 4-item focus of a Balanced Scorecard is:


✓ :~~ (1.) Financial (2.) Customer (3.) Internal processes (4.) Innovation /

Learning




The audit program is an audit strategy and plans that include:

✓ :~~ (1.) Scope (2.) Objectives (3.) Resources (4.) Procedures used to

evaluation controls and processes




IS auditors can stay current with technology through the following means:

✓ :~~ (1.) training courses (2.) webinars (3.) ISACA chapter training events

(4.) Industry conferences




Name the three Types of Controls

✓ :~~ (1.) Physical (2.) Technical (4.) Administrative




Name the two Categories of Controls

✓ :~~ (1.) Automatic (2.) Manual




Master01 | September, 2024/2025 | Latest update

Les avantages d'acheter des résumés chez Stuvia:

Qualité garantie par les avis des clients

Qualité garantie par les avis des clients

Les clients de Stuvia ont évalués plus de 700 000 résumés. C'est comme ça que vous savez que vous achetez les meilleurs documents.

L’achat facile et rapide

L’achat facile et rapide

Vous pouvez payer rapidement avec iDeal, carte de crédit ou Stuvia-crédit pour les résumés. Il n'y a pas d'adhésion nécessaire.

Focus sur l’essentiel

Focus sur l’essentiel

Vos camarades écrivent eux-mêmes les notes d’étude, c’est pourquoi les documents sont toujours fiables et à jour. Cela garantit que vous arrivez rapidement au coeur du matériel.

Foire aux questions

Qu'est-ce que j'obtiens en achetant ce document ?

Vous obtenez un PDF, disponible immédiatement après votre achat. Le document acheté est accessible à tout moment, n'importe où et indéfiniment via votre profil.

Garantie de remboursement : comment ça marche ?

Notre garantie de satisfaction garantit que vous trouverez toujours un document d'étude qui vous convient. Vous remplissez un formulaire et notre équipe du service client s'occupe du reste.

Auprès de qui est-ce que j'achète ce résumé ?

Stuvia est une place de marché. Alors, vous n'achetez donc pas ce document chez nous, mais auprès du vendeur ExamArsenal. Stuvia facilite les paiements au vendeur.

Est-ce que j'aurai un abonnement?

Non, vous n'achetez ce résumé que pour €12,79. Vous n'êtes lié à rien après votre achat.

Peut-on faire confiance à Stuvia ?

4.6 étoiles sur Google & Trustpilot (+1000 avis)

67096 résumés ont été vendus ces 30 derniers jours

Fondée en 2010, la référence pour acheter des résumés depuis déjà 14 ans

Commencez à vendre!
€12,79
  • (0)
  Ajouter