CISA Exam Dumps | Which of the following is the PRIMARY reason for using a digital signature?

<< Prev Question Next Question >>

Question 386/557

Which of the following is the PRIMARY reason for using a digital signature?

A. Provide availability to the transmission

B. Authenticate the sender of a message

C. Provide confidentiality to the transmission

D. Verify the integrity of the data and the identity of the recipient

Question List (557q): Question 1: Which of the following is MOST important with regard to an a...; Question 2: A web application is developed in-house by an organization. ...; Question 3: An IS auditor will be testing accounts payable controls by p...; Question 4: Which of the following methods will BEST reduce the risk ass...; Question 5: Which of the following would provide the BEST evidence of an...; Question 6: Which of the following is MOST important to verify when dete...; Question 7: Which of the following is the PRIMARY role of the IS auditor...; Question 8: Which of the following is the MOST important regulatory cons...; Question 9: Which of the following should an IS auditor be MOST concerne...; Question 10: When reviewing past results of a recurring annual audit, an ...; Question 11: Who is PRIMARILY responsible for the design of IT controls t...; Question 12: What is the PRIMARY purpose of documenting audit objectives ...; Question 13: Due to limited storage capacity, an organization has decided...; Question 14: An IS auditor is reviewing the backup procedures in an organ...; Question 15: Which of the following is a concern associated with virtuali...; Question 16: During a new system implementation, an IS auditor has been a...; Question 17: Which of the following is MOST useful for determining whethe...; Question 18: A small business unit is implementing a control self-assessm...; Question 19: Which of the following controls is MOST effective at prevent...; Question 20: Which of the following measures BEST mitigates the risk of d...; Question 21: What would be the PRIMARY reason an IS auditor would recomme...; Question 22: An IS auditor identifies that a legacy application to be dec...; Question 23: Which of the following would be the GREATEST concern for an ...; Question 24: In a RAO model, which of the following roles must be assigne...; Question 25: The PRIMARY purpose of requiring source code escrow in a con...; Question 26: Which of the following is the BEST source of information for...; Question 27: The FIRST step in auditing a data communication system is to...; Question 28: Which of the following is MOST important when creating a for...; Question 29: Which of the following responses to risk associated with sep...; Question 30: Which of the following should be of GREATEST concern for an ...; Question 31: An IS auditor is evaluating the risk associated with moving ...; Question 32: Which of the following would BEST enable an organization to ...; Question 33: The PRIMARY objective of a follow-up audit is to:...; Question 34: Which of the following should be of GREATEST concern to an I...; Question 35: Which of the following is the MOST important responsibility ...; Question 36: Which of the following is a method to prevent disclosure of ...; Question 37: In an area susceptible to unexpected increases in electrical...; Question 38: An externally facing system containing sensitive data is con...; Question 39: Which of the following findings should be of GREATEST concer...; Question 40: Which of the following is the MOST effective way to identify...; Question 41: An IS auditor is planning a review of an organizations cyber...; Question 42: During an audit of a multinational bank's disposal process, ...; Question 43: Which of the following is the PRIMARY benefit of operational...; Question 44: Which of the following BEST describes a digital signature?...; Question 45: The PRIMARY focus of a post-implementation review is to veri...; Question 46: An auditee disagrees with a recommendation for corrective ac...; Question 47: Which of the following will MOST likely compromise the contr...; Question 48: Aligning IT strategy with business strategy PRIMARILY helps ...; Question 49: An IS auditor observes that a large number of departed emplo...; Question 50: As part of an audit response, an auditee has concerns with t...; Question 51: The following findings are the result of an IS auditor's pos...; Question 52: A credit card company has decided to outsource the printing ...; Question 53: Which of the following documents should define roles and res...; Question 54: Which of the following is the BEST way for an IS auditor to ...; Question 55: Which of the following is the PRIMARY basis on which audit o...; Question 56: An IS auditor is assigned to perform a post-implementation r...; Question 57: Which of the following is the GREATEST advantage of utilizin...; Question 58: When implementing Internet Protocol security (IPsec) archite...; Question 59: A business has requested an audit to determine whether infor...; Question 60: An organization is disposing of a system containing sensitiv...; Question 61: An IS auditor is reviewing enterprise governance and finds t...; Question 62: Which of the following is the BEST method to safeguard data ...; Question 63: Which of the following security measures will reduce the ris...; Question 64: Of the following who should be responsible for cataloging an...; Question 65: An organization is establishing a steering committee for the...; Question 66: An IS auditor has been asked to advise on measures to improv...; Question 67: Which of the following is the MOST important factor when an ...; Question 68: Which of the following technology trends can lead to more ro...; Question 69: Which of the following is the MOST important consideration f...; Question 70: In which phase of the audit life cycle process should an IS ...; Question 71: Which of the following would be of GREATEST concern to an IS...; Question 72: An IS auditor has been tasked to review the processes that p...; Question 73: A contract for outsourcing IS functions should always includ...; Question 74: Which of the following is the MOST important reason for an I...; Question 75: Based on best practices, which types of accounts should be d...; Question 76: Which of the following is the PRIMARY objective of enterpris...; Question 77: Which of the following attack techniques will succeed becaus...; Question 78: Which of the following findings would be of GREATEST concern...; Question 79: Which of the following findings should be of GREATEST concer...; Question 80: An organization has shifted from a bottom-up approach to a t...; Question 81: Which of the following should be the GREATEST concern to an ...; Question 82: An IS auditor notes that not all security tests were complet...; Question 83: One benefit of return on investment (ROI) analysts in IT dec...; Question 84: Which of the following would MOST effectively help to reduce...; Question 85: An organization has replaced all of the storage devices at i...; Question 86: Which of the following would MOST effectively ensure the int...; Question 87: Which of the following should be of GREATEST concern to an |...; Question 88: An IS auditor wants to gain a better understanding of an org...; Question 89: Which of the following is MOST important to ensure when plan...; Question 90: Stress testing should ideally be earned out under a:...; Question 91: When evaluating information security governance within an or...; Question 92: Which of the following is an example of a preventative contr...; Question 93: Which of the following provides an IS auditor assurance that...; Question 94: An organization plans to receive an automated data feed into...; Question 95: What should be the PRIMARY basis for selecting which IS audi...; Question 96: When drafting a disaster recovery strategy, what should be t...; Question 97: Which of the following findings related to segregation of du...; Question 98: Which of the following is MOST helpful for measuring benefit...; Question 99: An IS auditor is evaluating the progress of a web-based cust...; Question 100: In which phase of the internal audit process is contact esta...; Question 101: An IS auditor should be MOST concerned if which of the follo...; Question 102: Which of the following is the BEST way to mitigate the impac...; Question 103: An IS auditor notes that the previous year's disaster recove...; Question 104: Which of the following is the BEST control to mitigate the m...; Question 105: An IS auditor is reviewing an organization's primary router ...; Question 106: An IS auditor is supporting a forensic investigation. An ima...; Question 107: During the planning phase of a data loss prevention (DLP) au...; Question 108: During a follow-up audit, it was found that a complex securi...; Question 109: An organization's sensitive data is stored in a cloud comput...; Question 110: What is the PRIMARY reason for an organization to classify t...; Question 111: Which of the following features would BEST address risk asso...; Question 112: Which of the following is MOST important for an IS auditor t...; Question 113: Which of the following physical controls provides the GREATE...; Question 114: A characteristic of a digital signature is that it...; Question 115: As part of the architecture of virtualized environments, in ...; Question 116: An online retailer is receiving customer complaints about re...; Question 117: Which of the following is the MOST significant risk that IS ...; Question 118: Which of the following is the MOST important task of an IS a...; Question 119: An IS auditor has been asked to provide support to the contr...; Question 120: Which of the following BEST enables an IS auditor to assess ...; Question 121: A source code repository should be designed to:...; Question 122: Which of the following should be the GREATEST concern to an ...; Question 123: Which of the following BEST addresses the availability of an...; Question 124: An organization with many desktop PCs is considering moving ...; Question 125: Which of the following should be done FIRST when creating a ...; Question 126: Which of the following protocols should be used when transfe...; Question 127: Which of the following should be done FIRST when planning to...; Question 128: The PRIMARY purpose of an incident response plan is to:...; Question 129: Which of the following is the MAJOR advantage of automating ...; Question 130: Which of the following is MOST important to consider when de...; Question 131: Which of the following is the BEST reason to implement a dat...; Question 132: Which of the following is the BEST recommendation to drive a...; Question 133: What type of control has been implemented when secure code r...; Question 134: Which of the following staff should an IS auditor interview ...; Question 135: Which of the following should an IS auditor use when verifyi...; Question 136: Which of the following is the GREATEST risk associated with ...; Question 137: Which of the following is the MOST effective control over vi...; Question 138: Which of the following types of firewalls provides the GREAT...; Question 139: Which of the following should be the FIRST consideration whe...; Question 140: What should an IS auditor do FIRST when management responses...; Question 141: An organization's security team created a simulated producti...; Question 142: Which of the following is a threat to IS auditor independenc...; Question 143: The performance, risks, and capabilities of an IT infrastruc...; Question 144: An organization's information security policies should be de...; Question 145: Which of the following control measures is the MOST effectiv...; Question 146: Which of the following presents the GREATEST challenge to th...; Question 147: Which of the following is MOST important for an IS auditor t...; Question 148: Which of the following is MOST useful for determining the st...; Question 149: The BEST way to evaluate the effectiveness of a newly develo...; Question 150: An organization allows programmers to change production syst...; Question 151: Which of the following provides the BE ST method for maintai...; Question 152: During the walk-through procedures for an upcoming audit, an...; Question 153: The waterfall life cycle model of software development is BE...; Question 154: Which of the following would BEST determine whether a post-i...; Question 155: Which of the following should be the PRIMARY focus when comm...; Question 156: Which of the following should be of GREATEST concern to an I...; Question 157: Which of the following should be of GREATEST concern to an I...; Question 158: Which of the following application input controls would MOST...; Question 159: An IS auditor has been asked to review the integrity of data...; Question 160: If a recent release of a program has to be backed out of pro...; Question 161: An IS auditor is reviewing a data conversion project Which o...; Question 162: When an intrusion into an organization's network is detected...; Question 163: Which of the following would be MOST important to include in...; Question 164: Capacity management enables organizations to:...; Question 165: During an audit which of the following would be MOST helpful...; Question 166: In a public key cryptographic system, which of the following...; Question 167: What should an IS auditor recommend to management as the MOS...; Question 168: When reviewing an IT strategic plan, the GREATEST concern wo...; Question 169: Which of the following BEST ensures that effective change ma...; Question 170: During the audit of an enterprise resource planning (ERP) sy...; Question 171: An IS auditor is tasked to review an organization's plan-do-...; Question 172: Which of the following should be the FRST step when developi...; Question 173: Which of the following is the PRIMARY role of key performanc...; Question 174: Which of the following would BEST guide an IS auditor when d...; Question 175: In a 24/7 processing environment, a database contains severa...; Question 176: Which of the following is the MOST appropriate responsibilit...; Question 177: An IS auditor is evaluating the access controls for a shared...; Question 178: The operations team of an organization has reported an IS se...; Question 179: in a controlled application development environment, the MOS...; Question 180: Which of the following is the MAIN objective of enterprise a...; Question 181: Who is responsible for defining data access permissions?...; Question 182: A steering committee established to oversee an organization'...; Question 183: Which of the following is MOST important for an effective co...; Question 184: During an audit of an organization's risk management practic...; Question 185: Audit frameworks can assist the IS audit function by:...; Question 186: Which of the following technologies has the SMALLEST maximum...; Question 187: Which of the following would be MOST effective to protect in...; Question 188: Which of the following will be the MOST effective method to ...; Question 189: Which of the following issues associated with a data center'...; Question 190: An IS auditor should look for which of the following to ensu...; Question 191: Which of the following is MOST important when defining the I...; Question 192: An IS auditor wants to verify alignment of the organization'...; Question 193: When auditing the closing stages of a system development pro...; Question 194: Which of the following poses the GREATEST risk to an organiz...; Question 195: Which of the following is the BEST way to address potential ...; Question 196: Which of the following BEST enables an IS auditor to confirm...; Question 197: Audit frameworks cart assist the IS audit function by:...; Question 198: Which of the following should be an IS auditor's GREATEST co...; Question 199: An IS auditor can BEST evaluate the business impact of syste...; Question 200: Which of the following BEST enables an organization to stand...; Question 201: Which of the following statements appearing in an organizati...; Question 202: Which of the following risk scenarios is BEST addressed by i...; Question 203: Which of the following is the MOST effective control for pro...; Question 204: Recovery facilities providing a redundant combination of Int...; Question 205: To develop meaningful recommendations 'or findings, which of...; Question 206: A vendor requires privileged access to a key business applic...; Question 207: Which of the following controls BEST ensures appropriate seg...; Question 208: Which of the following is the GREATEST risk associated with ...; Question 209: Which of the following is the PRIMARY reason to involve IS a...; Question 210: Which of the following is the PRIMARY reason for an IS audit...; Question 211: Which of the following is the MOST important consideration w...; Question 212: Which of the following presents the GREATEST risk associated...; Question 213: Following an IT audit, management has decided to accept the ...; Question 214: A new regulation has been enacted that mandates specific inf...; Question 215: In data warehouse (DW) management, what is the BEST way to p...; Question 216: When planning an audit, it is acceptable for an IS auditor t...; Question 217: A security review focused on data loss prevention (DLP) reve...; Question 218: During the implementation of a new system, an IS auditor mus...; Question 219: Which of the following is MOST important to determine when c...; Question 220: Which of the following should be of GREATEST concern to an I...; Question 221: An organization plans to receive an automated data feed into...; Question 222: In an environment that automatically reports all program cha...; Question 223: An organization has recently implemented a Voice-over IP (Vo...; Question 224: What is MOST important to verify during an external assessme...; Question 225: An IS auditor would MOST likely recommend that IT management...; Question 226: Which of the following provides a new IS auditor with the MO...; Question 227: The MOST important measure of the effectiveness of an organi...; Question 228: Which of the following is an analytical review procedure for...; Question 229: The purpose of a checksum on an amount field in an electroni...; Question 230: Which of the following is a PRIMARY benefit of using risk as...; Question 231: The implementation of an IT governance framework requires th...; Question 232: Which of the following provides the BEST providence that out...; Question 233: An IS auditor is performing a follow-up audit for findings i...; Question 234: Which of the following BEST enables an IS auditor to confirm...; Question 235: An IS auditor finds a segregation of duties issue in an ente...; Question 236: Which of the following provides the MOST reliable method of ...; Question 237: An external attacker spoofing an internal Internet Protocol ...; Question 238: Which of the following BEST describes the role of a document...; Question 239: Which of the following BEST facilitates the legal process in...; Question 240: An IS auditor has been tasked with auditing the inventory co...; Question 241: An IS auditor is evaluating an organization's IT strategy an...; Question 242: Which of the following BEST enables an organization to impro...; Question 243: During audit planning, the IS audit manager is considering w...; Question 244: During an external review, an IS auditor observes an inconsi...; Question 245: The decision to accept an IT control risk related to data qu...; Question 246: An organization has outsourced its data processing function ...; Question 247: Which of the following is the BEST way to mitigate risk to a...; Question 248: A disaster recovery plan (DRP) should include steps for:...; Question 249: Which of the following should be of GREATEST concern to an I...; Question 250: Which of the following is the BEST method to maintain an aud...; Question 251: Which of the following components of a risk assessment is MO...; Question 252: Which of the following would a digital signature MOST likely...; Question 253: An IS auditor is reviewing logical access controls for an or...; Question 254: Which of the following is the BEST indication that an inform...; Question 255: Which of the following is an IS auditor's BEST recommendatio...; Question 256: Which of the following is the MOST efficient way to identify...; Question 257: An IT governance body wants to determine whether IT service ...; Question 258: A company has implemented an IT segregation of duties policy...; Question 259: During an organization's implementation of a data loss preve...; Question 260: Which of the following should be of GREATEST concern to an I...; Question 261: When reviewing the functionality of an intrusion detection s...; Question 262: What would be an IS auditor's BEST recommendation upon findi...; Question 263: An IS auditor should ensure that an application's audit trai...; Question 264: What is the PRIMARY benefit of using one-time passwords?...; Question 265: An incident response team has been notified of a virus outbr...; Question 266: Which of the following threats is mitigated by a firewall?...; Question 267: Which of the following is the BEST way to foster continuous ...; Question 268: Which of the following cloud capabilities BEST enables an or...; Question 269: Which of the following procedures for testing a disaster rec...; Question 270: Which of the following findings would be of GREATEST concern...; Question 271: When an intrusion into an organization network is deleted, w...; Question 272: Which of the following is the BEST audit procedure to determ...; Question 273: Which of the following is the MOST important consideration o...; Question 274: Which of the following would be of GREATEST concern to an IS...; Question 275: Which of the following should an IS auditor recommend be don...; Question 276: During which stage of the penetration test cycle does the te...; Question 277: An IS auditor performs a follow-up audit and learns the appr...; Question 278: An IS auditor finds that the cost of developing an applicati...; Question 279: Which of the following would BEST ensure that a backup copy ...; Question 280: Which of the following is the MOST effective control to miti...; Question 281: An IS auditor is asked to review an organization's technolog...; Question 282: Which of the following types of firewalls provide the GREATE...; Question 283: Which of the following findings from an IT governance review...; Question 284: Which of the following should an IS auditor expect to see in...; Question 285: Which of the following should an IS auditor be MOST concerne...; Question 286: Which of the following is the PRIMARY reason to perform a ri...; Question 287: Which of the following controls would BEST help a forensic i...; Question 288: What is the BEST control to address SQL injection vulnerabil...; Question 289: IT management has accepted the risk associated with an IS au...; Question 290: Which of the following is the BEST method for converting sys...; Question 291: Which of the following is the PRIMARY advantage of using an ...; Question 292: An IS auditor is preparing a plan for audits to be carried o...; Question 293: When determining whether a project in the design phase will ...; Question 294: Which of the following tests would provide the BEST assuranc...; Question 295: What is the BEST way to reduce the risk of inaccurate or mis...; Question 296: which of the following is a core functionality of a configur...; Question 297: Which of the following is the GREATEST risk of project dashb...; Question 298: A bank wants to outsource a system to a cloud provider resid...; Question 299: Which of the following should be the GREATEST concern for an...; Question 300: An organization has engaged a third party to implement an ap...; Question 301: An internal audit department recently established a quality ...; Question 302: An organization offers an e-commerce platform that allows co...; Question 303: Which of the following is the PRIMARY reason an IS auditor s...; Question 304: To help determine whether a controls-reliant approach to aud...; Question 305: During audit framework. an IS auditor teams that employees a...; Question 306: Which of the following would be of GREATEST concern when rev...; Question 307: A now regulation requires organizations to report significan...; Question 308: The GREATEST concern for an IS auditor reviewing vulnerabili...; Question 309: Which of the following is the BEST indication to an IS audit...; Question 310: Which of the following is the MAIN purpose of an information...; Question 311: IS management has recently disabled certain referential inte...; Question 312: While conducting a follow-up on an asset management audit, t...; Question 313: An IS auditor is reviewing the service agreement with a tech...; Question 314: When reviewing an organization's information security polici...; Question 315: An organization that has decided to approve the use of end-u...; Question 316: Which of the following approaches would present the GREATEST...; Question 317: Which of the following would provide management with the MOS...; Question 318: Which of the following should be of GREATEST concern to an I...; Question 319: An IS auditor is analyzing a sample of accounts payable tran...; Question 320: An organization is concerned about duplicate vendor payments...; Question 321: A configuration management audit identified that predefined ...; Question 322: Which of the following technologies is BEST suited to fulfil...; Question 323: A company requires that all program change requests (PCRs) b...; Question 324: Which of the following would minimize the risk of losing tra...; Question 325: Which of the following is the BEST preventive control to pro...; Question 326: A bank has a combination of corporate customer accounts (hig...; Question 327: An IS auditor is reviewing an organization that performs bac...; Question 328: During an audit of a financial application, it was determine...; Question 329: An organization conducted an exercise to test the security a...; Question 330: Backup procedures for an organization's critical data are co...; Question 331: When reviewing a project to replace multiple manual data ent...; Question 332: Which of the following BEST addresses the availability of an...; Question 333: Demonstrated support from which of the following roles in an...; Question 334: An IS auditor finds that an organization's data loss prevent...; Question 335: The BEST way to prevent fraudulent payments is to implement ...; Question 336: Which of the following is the BEST way to prevent social eng...; Question 337: With regard to resilience, which of the following is the GRE...; Question 338: The PRIMARY reason to perform internal quality assurance (QA...; Question 339: An IS auditor engaged in developing the annual internal audi...; Question 340: Which of the following would be MOST useful when analyzing c...; Question 341: Which of the following documents should specify roles and re...; Question 342: Which of the following is the MOST important reason to class...; Question 343: Which of the following is MOST important for an IS auditor t...; Question 344: A core system fails a week after a scheduled update, causing...; Question 345: The PRIMARY reason to assign data ownership for protection o...; Question 346: A hearth care organization utilizes Internet of Things (loT)...; Question 347: Who is accountable for an organization's enterprise risk man...; Question 348: Which of the following areas of responsibility would cause t...; Question 349: Which of the following controls BEST ensures appropriate seg...; Question 350: Data from a system of sensors located outside of a network i...; Question 351: Which of the following is the BEST methodology to use for es...; Question 352: Which of the following can BEST reduce the impact of a long-...; Question 353: Which of the following BEST enables the timely identificatio...; Question 354: Which of the following should an IS auditor review FIRST whe...; Question 355: During a database management evaluation an IS auditor discov...; Question 356: Which of the following would be a result of utilizing a top-...; Question 357: An IS auditor Is renewing the deployment of a new automated ...; Question 358: An IS auditor is conducting a post-implementation review of ...; Question 359: Which of the following is the MOST important consideration t...; Question 360: An organization outsourced its IS functions to meet its resp...; Question 361: Which of the following is MOST important during software lic...; Question 362: Which of the following responses to risk associated with seg...; Question 363: A global bank plans to use a cloud provider for backup of cu...; Question 364: Which of the following is the BEST metric to measure the qua...; Question 365: Which of the following is MOST helpful to an IS auditor revi...; Question 366: A database administrator (DBA) should be prevented from havi...; Question 367: Which of the following is the MOST important consideration f...; Question 368: An IS audit reveals an IT application is experiencing poor p...; Question 369: Which of the following IT service management activities is M...; Question 370: An IS auditor is assigned to review the IS department s qual...; Question 371: An IS audit manager is preparing the staffing plan for an au...; Question 372: IT disaster recovery time objectives (RTOs) should be based ...; Question 373: An IS auditor determines that the vendor's deliverables do n...; Question 374: Which of the following is MOST important to include in secur...; Question 375: An IS auditor finds that one employee has unauthorized acces...; Question 376: An IS auditor is reviewing database fields updated in real-t...; Question 377: Which of the following strategies BEST optimizes data storag...; Question 378: Which of the following types of environmental equipment will...; Question 379: Which of the following is the PRIMARY reason for an IS audit...; Question 380: An IS auditor has been tasked with analyzing an organization...; Question 381: Which of the following controls is MOST important for ensuri...; Question 382: An organization wants to use virtual desktops to deliver cor...; Question 383: An organization that has suffered a cyber-attack is performi...; Question 384: Which of the following is the BEST way to minimize sampling ...; Question 385: Which of the following is the MOST appropriate testing appro...; Question 386: Which of the following is the PRIMARY reason for using a dig...; Question 387: An organization plans to replace its nightly batch processin...; Question 388: Which of the following is the BEST approach for determining ...; Question 389: Which of the following would be of GREATEST concern to an IS...; Question 390: Which of the following is the PRIMARY reason to follow a con...; Question 391: Documentation of workaround processes to keep a business fun...; Question 392: Which of the following BEST protects an organization's propr...; Question 393: In order for a firewall to effectively protect a network aga...; Question 394: Which of the following is MOST effective for controlling vis...; Question 395: Which of the following is MOST important when planning a net...; Question 396: Which of the following should be an IS auditor's PRIMARY foc...; Question 397: Transaction records from a business database were inadverten...; Question 398: Which of the following is the BEST way to prevent social eng...; Question 399: Before the release of a new application into an organization...; Question 400: An IS auditor discovers that due to resource constraints a d...; Question 401: Which of the following controls is the BEST recommendation t...; Question 402: An external audit firm was engaged to perform a validation a...; Question 403: Management receives information indicating a high level of r...; Question 404: Which of the following is a PRIMARY function of an intrusion...; Question 405: Which of the following is the BEST control to help ensure th...; Question 406: An IS auditor is assessing the adequacy of management's reme...; Question 407: An IS auditor is reviewing how password resets are performed...; Question 408: Which of the following access rights presents the GREATEST r...; Question 409: Which type of review is MOST important to conduct when an IS...; Question 410: An IS auditor learns a server administration team regularly ...; Question 411: An IS auditor discovers that backups of critical systems are...; Question 412: To enable the alignment of IT staff development plans with I...; Question 413: Which of the following BEST enables an organization to impro...; Question 414: An IS auditor is reviewing an organization's system developm...; Question 415: Which of the following provides IS audit professionals with ...; Question 416: Which of the following is the MOST effective accuracy contro...; Question 417: An organization has assigned two new IS auditors to audit a ...; Question 418: An IS auditor is reviewing the security of a web-based custo...; Question 419: Which of the following findings would be of GREATEST concern...; Question 420: During an audit, the IS auditor finds that in many cases exc...; Question 421: Due to limited storage capacity, an organization has decided...; Question 422: Which of the following should be of GREATEST concern for an ...; Question 423: An organization's strategy to source certain IT functions fr...; Question 424: An organization relies on an external vendor that uses a clo...; Question 425: An organization's security policy mandates that all new empl...; Question 426: An IS auditor has been asked to audit the proposed acquisiti...; Question 427: Which of the following BEST supports the effectiveness of a ...; Question 428: Which of the following is an IS auditor's BEST recommendatio...; Question 429: Which of the following is the BEST indication that there are...; Question 430: Which of the following is the MOST important activity in the...; Question 431: Which of the following backup schemes is the BEST option whe...; Question 432: During which phase of the software development life cycle is...; Question 433: In which of the following sampling methods is the entire sam...; Question 434: Which of the following is MOST helpful for evaluating benefi...; Question 435: A review of IT interface controls finds an organization does...; Question 436: Which of the following represents the HIGHEST level of matur...; Question 437: Which of the following is MOST important to consider when sc...; Question 438: Which of the following BEST indicates a need to review an or...; Question 439: Which of the following BEST enables a benefits realization p...; Question 440: A mission-critical application utilizes a one-node database ...; Question 441: Which of the following should be performed FIRST before key ...; Question 442: Which of the following would be an IS auditor's BEST recomme...; Question 443: Which of the following is MOST useful when planning to audit...; Question 444: Which of the following would BEST protect the confidentialit...; Question 445: Which of the following provides an IS auditor the BEST evide...; Question 446: Which of the following is the GREATEST risk associated with ...; Question 447: Which of the following would the IS auditor MOST likely revi...; Question 448: An IS auditor is reviewing security controls related to coll...; Question 449: Which of the following audit procedures would provide the BE...; Question 450: Which of the following must be in place before an IS auditor...; Question 451: Which of the following is the PRIMARY purpose of obtaining a...; Question 452: An organization's business continuity plan (BCP) should be:...; Question 453: Which of the following should an IS auditor recommend be don...; Question 454: Which of the following helps to ensure the integrity of data...; Question 455: Which of the following are BEST suited for continuous auditi...; Question 456: In a large organization, IT deadlines on important projects ...; Question 457: In an IT organization where many responsibilities are shared...; Question 458: An IS auditor is reviewing an organization's business intell...; Question 459: An organization requires the use of a key card to enter its ...; Question 460: An organization is ready to implement a new IT solution cons...; Question 461: Which of the following are used in a firewall to protect the...; Question 462: Which of the following is found in an audit charter?...; Question 463: A new regulation in one country of a global organization has...; Question 464: An organization allows employees to retain confidential data...; Question 465: Which of the following is the BEST data integrity check?...; Question 466: Which of the following is the BEST way to ensure that an app...; Question 467: Which of the following would BEST detect that a distributed ...; Question 468: An IS auditor is following up on prior period items and find...; Question 469: Which type of review is MOST important to conduct when an IS...; Question 470: During a routine internal software licensing review, an IS a...; Question 471: An IS auditor is reviewing an organization's information ass...; Question 472: An organization is planning to implement a control self-asse...; Question 473: Which of the following backup methods is MOST appropriate wh...; Question 474: Which of the following should be identified FIRST during the...; Question 475: An IS auditor finds that a new network connection allows com...; Question 476: Which of the following should be an IS auditor's GREATEST co...; Question 477: Management has learned the implementation of a new IT system...; Question 478: An IS auditor has been asked to review an event log aggregat...; Question 479: A current project to develop IT-based solutions will need ad...; Question 480: A new system is being developed by a vendor for a consumer s...; Question 481: When protecting the confidentiality of information assets, t...; Question 482: Which of the following BEST protects evidence in a forensic ...; Question 483: An IS auditor finds a high-risk vulnerability in a public-fa...; Question 484: What is the Most critical finding when reviewing an organiza...; Question 485: An organization's IT department and internal IS audit functi...; Question 486: An IS department is evaluated monthly on its cost-revenue ra...; Question 487: Which of the following is MOST important for an IS auditor t...; Question 488: Which of the following provides the BEST audit evidence that...; Question 489: An IS audit reveals that an organization is not proactively ...; Question 490: Which of the following should be an IS auditor's PRIMARY foc...; Question 491: Which of the following should be the GREATEST concern to an ...; Question 492: A small organization is experiencing rapid growth and plans ...; Question 493: Which of the following responsibilities of an organization's...; Question 494: An organization is modernizing its technology policy framewo...; Question 495: An organization is permanently transitioning from onsite to ...; Question 496: Which of the following is the BEST performance indicator for...; Question 497: Which type of attack targets security vulnerabilities in web...; Question 498: Which of the following weaknesses would have the GREATEST im...; Question 499: Which of the following is the STRONGEST indication of a matu...; Question 500: Which of the following fire suppression systems needs to be ...; Question 501: An IS auditor has learned that access privileges are not per...; Question 502: Which of the following BEST describes an audit risk?...; Question 503: An IS auditor is reviewing an artificial intelligence (Al) a...; Question 504: While evaluating the data classification process of an organ...; Question 505: Which of the following is MOST important for an IS auditor t...; Question 506: A review of Internet security disclosed that users have indi...; Question 507: Which of the following practices associated with capacity pl...; Question 508: Which of the following criteria is MOST important for the su...; Question 509: Which of the following is the MOST important consideration f...; Question 510: Which of the following data would be used when performing a ...; Question 511: When planning an internal penetration test, which of the fol...; Question 512: An IS auditor is reviewing documentation from a change that ...; Question 513: During the design phase of a software development project, t...; Question 514: A programmer has made unauthorized changes to key fields in ...; Question 515: Which of the following is the GREATEST advantage of vulnerab...; Question 516: Which of the following should be an IS auditor's GREATEST co...; Question 517: In an environment where data virtualization is used, which o...; Question 518: Which of the following will provide the GREATEST assurance t...; Question 519: Management has requested a post-implementation review of a n...; Question 520: Which of the following should be done FIRST to minimize the ...; Question 521: Which of the following network communication protocols is us...; Question 522: An IS auditor finds that a key Internet-facing system is vul...; Question 523: Which of the following is the BEST way to enforce the princi...; Question 524: Following the sale of a business division, employees will be...; Question 525: When physical destruction IS not practical, which of the fol...; Question 526: During a closing meeting, the IT manager disagrees with a va...; Question 527: An IS audit manager is reviewing workpapers for a recently c...; Question 528: What would be an IS auditor's BEST course of action when an ...; Question 529: An organization implemented a cybersecurity policy last year...; Question 530: An IS auditor is reviewing a decision to consolidate process...; Question 531: An organization has implemented a new data classification sc...; Question 532: Which of the following would be an appropriate role of inter...; Question 533: When planning an audit to assess application controls of a c...; Question 534: During an external review, an IS auditor observes an inconsi...; Question 535: An organization has recently acquired and implemented intell...; Question 536: A system development project is experiencing delays due to o...; Question 537: A security administrator is called in the middle of the nigh...; Question 538: How does a continuous integration/continuous development (CI...; Question 539: An IS auditor has found that an organization is unable to ad...; Question 540: Which type of testing is used to identify security vulnerabi...; Question 541: If a source code is not recompiled when program changes are ...; Question 542: Which of the following is MOST important to define within a ...; Question 543: Which of the following security measures will reduce the ris...; Question 544: Which of the following concerns is BEST addressed by securin...; Question 545: Which of the following should be considered when examining f...; Question 546: Which of the following should be an IS auditor's GREATEST co...; Question 547: The record-locking option of a database management system (D...; Question 548: When a data center is attempting to restore computing facili...; Question 549: An organization is concerned with meeting new regulations fo...; Question 550: During a physical security audit, an IS auditor was provided...; Question 551: Which of the following would be the GREATEST concern during ...; Question 552: Which of the following should be of MOST concern to an IS au...; Question 553: A system administrator recently informed the IS auditor abou...; Question 554: Which of the following is MOST important to ensure when deve...; Question 555: An IS auditor is providing input to an RFP to acquire a fina...; Question 556: Which of the following approaches will ensure recovery time ...; Question 557: Which of the following observations would an IS auditor cons...

Question 386/557

LEAVE A REPLY

Download PDF File