Which of the following is the auditor’s MOST important course of action?

CISA V2 0 Comments

During an incident management audit, an IS auditor finds that several similar incidents were logged during the audit period.

Which of the following is the auditor’s MOST important course of action?
A . Document the finding and present it to management.
B . Determine if a root cause analysis was conducted.
C . Confirm the resolution time of the incidents.
D . Validate whether all incidents have been actioned.

Answer: B

Explanation:

The IS auditor’s most important course of action after finding that several similar incidents were logged during the audit period is to determine if a root cause analysis was conducted. A root cause analysis is a systematic process that identifies the underlying causes of system failures or incidents. A root cause analysis can help to prevent recurrence of similar incidents, improve system performance and reliability, and enhance incident management processes. The IS auditor should evaluate whether a root cause analysis was performed for each incident, whether it was timely and thorough, and whether it resulted in effective corrective actions.

Latest CISA Dumps Valid Version with 2694 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download CISA PDF     CISA Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments