- All Exams Instant Download
Which of the following is the BEST recommendation to prevent fraudulent electronic funds transfers by accounts payable employees?
Which of the following is the BEST recommendation to prevent fraudulent electronic funds transfers by accounts payable employees?A . Periodic vendor reviews B. Dual control C. Independent reconciliation D. Re-keying of monetary amounts E. Engage an external security incident response expert for incident handling.View AnswerAnswer: B
What is the BEST control to ensure that data is accurately entered into the system?
Spreadsheets are used to calculate project cost estimates. Totals for each cost category are then keyed into the job-costing system . What is the BEST control to ensure that data is accurately entered into the system?A . Reconciliation of total amounts by project B. Validity checks, preventing entry of character...
Which of the following access rights presents the GREATEST risk when granted to a new member of the system development staff?
Which of the following access rights presents the GREATEST risk when granted to a new member of the system development staff?A . Write access to production program libraries B. Write access to development data libraries C. Execute access to production program libraries D. Execute access to development program librariesView AnswerAnswer:...
Which of the following is the BEST control to mitigate the malware risk associated with an instant messaging (IM) system?
Which of the following is the BEST control to mitigate the malware risk associated with an instant messaging (IM) system?A . Blocking attachments in IM B. Blocking external IM traffic C. Allowing only corporate IM solutions D. Encrypting IM trafficView AnswerAnswer: C
Which of the following should be an IS auditor's PRIMARY focus when developing a risk-based IS audit program?
Which of the following should be an IS auditor's PRIMARY focus when developing a risk-based IS audit program?A . Portfolio management B. Business plans C. Business processes D. IT strategic plansView AnswerAnswer: C
Which of the following is the IS auditor's BEST course of action?
During an ongoing audit, management requests a briefing on the findings to date . Which of the following is the IS auditor's BEST course of action?A . Review working papers with the auditee. B. Request the auditee provide management responses. C. Request management wait until a final report is ready...
Which of the following would BEST determine whether the service provider continues to meet the organization s objectives?
An organization has outsourced its data processing function to a service provider . Which of the following would BEST determine whether the service provider continues to meet the organization s objectives?A . Assessment of the personnel training processes of the provider B. Adequacy of the service provider's insurance C. Review...
Which of the following is the auditor's BEST action?
During the discussion of a draft audit report. IT management provided suitable evidence fiat a process has been implemented for a control that had been concluded by the IS auditor as Ineffective . Which of the following is the auditor's BEST action?A . Explain to IT management that the new...
Which of the following would be of GREATEST concern to the auditor?
An IS auditor is reviewing an organization's information asset management process . Which of the following would be of GREATEST concern to the auditor?A . The process does not require specifying the physical locations of assets. B. Process ownership has not been established. C. The process does not include asset...
Which of the following should be the PRIMARY basis for prioritizing follow-up audits?
Which of the following should be the PRIMARY basis for prioritizing follow-up audits?A . Audit cycle defined in the audit plan B. Complexity of management's action plans C. Recommendation from executive management D. Residual risk from the findings of previous auditsView AnswerAnswer: D
