Papersbyjol

Management - ANSWERPlans, builds, runs and monitors activities in alignment with the direction set by the governance body to achieve the enterprise objectives. Is the responsibility of the executive management, under the leadership of the CEO IS Management - ANSWEREnsuring that adequate resources are allocated to suport IS operations Planning to ensure the most efficient and effective use of an operation's resources Authorizing and monitoring IT resource usage based on corporate policy ...

What does EGIT stand for? What is it's meaning? - ANSWEREnterprise Governance of Information and Technology. It a system composed of stakeholders, board of directors, department managers, and internal customers who provide input into the IT decision making process. What are the three broad processes in the EGIT framework are: - ANSWER1. IT Resource Management - Focuses on maintainng an updated inventory of all IT resources and addresses the risk mgmt. process. 2. Performance Measurement ...

Who should approve the audit charter of an organization? - ANSWERSenior management What should the content of an audit charter be? - ANSWERThe scope, authority, and responsibilities of the audit function What is the prime reason for review of an organization chart? - ANSWERTo understand the authority and responsibility of individuals The actions of an IS auditor are primarily influenced by - ANSWERAudit charter Which document provides the overall authority for an auditor to perform a...

Who is responsible for imposing an IT governance model encompassing IT strategy, information security, and formal enterprise architectural mandates? - ANSWERIT executives and the Board of Directors The party that performs strategic planning, addresses near-term and long-term requirements aligning business objectives, and technology strategies. - ANSWERThe Steering Committee What three elements allow validation of business practices against acceptable measures of regulatory compliance, perf...

Who should approve the audit charter of an organization? - ANSWERSenior Management What should the content of an audit charter be? - ANSWERThe scope, authority, and responsibilities of the audit function What is the prime reason for review of an organization chart? - ANSWERTo understand the authority and responsibility of individuals The actions of an IS auditor are primiarily influenced by - ANSWERAudit Charter Which document provides the overall authority for an auditor to perform ...

Which of the following is most closely related to data backup frequency? - ANSWERRPO Which of the following identifies how negative incidents affect business operations? - ANSWERBusiness impact analysis What is the overall purpose of an ARP poisoning attack? - ANSWERForce user traffic through the attacker's machine How many disks are required to configure RAID 5? - ANSWER3

Who should approve the audit charter of an organization? - ANSWERSenior Management What should the content of an audit charter be? - ANSWERThe scope, authority, and responsibilities of the audit function What is the primary reason for the audit function directly reporting to the audit committee? - ANSWERThe audit function must be independent of the business function and should have direct access to the audit committee of the board what does the information systems audit provide? - ANSWE...

Audit Charter - ANSWERa formal document that contains: 1. scope of the audit functions 2. authority of the audit functions 3. responsibility of the audit functions Audit Universe - ANSWERAn inventory of all the functions/processes/units under the organization Qualitative Risk Assessment - ANSWERRisk is assessed using qualitative parameters, such as high, medium, and low Quantitative Risk Assessment - ANSWERRisk is assessed using numerical parameters and is quantified Risk Factors...

Which of the following controls will MOST effectively detect the presence of bursts of errors in network transmissions? a. Parity check b. Echo check c. Block sum check d. Cyclic redundancy check - ANSWERd. Cyclic redundancy check An employee loses a mobile device resulting in loss of sensitive corporate data. Which of the following would have BEST prevented data leakage? A. Data encryption on the mobile device B. The triggering of remote data wipe capabilities C. Awareness training fo...

Which of the following is the BEST preventive control to protect the confidentiality of data on a corporate smartphone in the event it is lost? a) Biometric authentication for the device b) Remote data wipe program c) Encryption of the data stored on the device d) Password for device authentication - ANSWERc) Encryption of the data stored on the device Note the question asks about a PREVENTATIVE control to protect CONFIDENTIALITY. Confidentiality entails the efforts to keep data private, ...