- Email support@dumps4free.com
Topic 1: Exam Pool A
Which of the following is the BEST source for describing the objectives of an organization s information systems?
A.
IT management
B.
Business process owners
C.
Information security management
D.
End users
Business process owners
Which of the following would an IS auditor recommend as the MOST effective preventive control to reduce the risk of data leakage'
A.
Ensure that paper documents arc disposed security.
B.
Implement an intrusion detection system (IDS).
C.
Verify that application logs capture any changes made.
D.
Validate that all data files contain digital watermarks
Validate that all data files contain digital watermarks
An IS auditor notes that help desk personnel are required to make critical decisions duringmajor service disruptions. Which of the following is the auditor's BEST recommendation to address this situation?
A.
Introduce classification of disruptions by risk category.
B.
Provide historical incident response information for the help desk
C.
Implement an incident response plan
D.
Establish shared responsibility among business peers
Implement an incident response plan
Which audit technique provides the GREATEST assurance that incident management procedures are effective?
A.
Determining whether incidents are categorized and addressed
B.
Comparing incident management procedures to best practices
C.
Performing comprehensive vulnerability scanning and penetration testing
D.
Evaluating end-user satisfaction survey results
Evaluating end-user satisfaction survey results
An IS auditor is reviewing the upgrading of an operating system. Which of the following would be the GREATEST audit concern?
A.
The lack of change control
B.
The lack of malware protection
C.
The lack of release notes
D.
The lack of activity logging
The lack of change control
| Page 9 out of 204 Pages |
| Previous |