- All Exams Instant Download
Which of the following actions the auditor may impair his independence?
An information system auditor who is conducting an application development review is attending a meeting of the development team. Which of the following actions the auditor may impair his independence?A . Assist in the development of integrated test equipment on the system.B . Re-execute the test program used by...
In a shared processing environment, the biggest challenges are:
In a shared processing environment, the biggest challenges are:A . Separate customer data.B . Consolidation results.C . Consistent standardsD . Separate the customer network.View AnswerAnswer: C
Which of the following is the biggest risk?
Due to cost constraints, the company postponed the replacement date for supporting core application hardware. Which of the following is the biggest risk?A . The final replacement cost may be higherB . System availability may be affectedC . Maintenance costs may increaseD . May not be upgraded in the...
Which of the following should be based on the IT Disaster Recovery Time Objective (RTO)
Which of the following should be based on the IT Disaster Recovery Time Objective (RTO)A . System criticality based on business definitionB . Allow up to the missing dataC . The root cause of the interruptionD . Maximum allowable downtimeView AnswerAnswer: D
An organization wants to classify database tables based on their data classification scheme.
An organization wants to classify database tables based on their data classification scheme. The information system auditor believes that the classification of the table should be based on:A . Description of the column names in the table.B . The frequency of updates to the table.C . The number of...
Which of the following information system auditors' recommendations best ensures that the control weaknesses found during the audit process are properly mitigated?
Which of the following information system auditors' recommendations best ensures that the control weaknesses found during the audit process are properly mitigated?A . Report progress to the Audit Committee.B . Implement the software system and enter the Information Systems Auditor Action Plan.C . Assign tasks to followers and follow...
Which of the following is the primary concern of the auditor?
When evaluating the virtual server environment, the information system auditor learned that the production server, development server and management console are all hosted on the same physical host. Which of the following is the primary concern of the auditor?A . The development server and production server share the same...
The advantage of object-oriented system development is that it:
The advantage of object-oriented system development is that it:A . Suitable for data with complex relationshipsB . Partition the system as a client server architectureC . Easier to program than procedural languagesD . Reduce system documentation requirementsView AnswerAnswer: A
Which of the following is most likely to be evaluated?
Management requires a post-implementation review of the newly installed procurement package to determine the system meets business requirements. Which of the following is most likely to be evaluated?A . Live processing resultsB . Test resultsC . Implementation methodD . Procurement guidelines and policiesView AnswerAnswer: A
In the actual difficult audit review process, if the Business Impact Analysis (BIA) did not proceed, the auditor should first:
In the actual difficult audit review process, if the Business Impact Analysis (BIA) did not proceed, the auditor should first:A . Assess the impact on current disaster recovery capabilities.B . Submit an interim report to management.C . Perform business impact analysis.D . Perform additional compliance tests.View AnswerAnswer: D
