100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
CISA Study Guide Questions & 100% Correct Answers $13.49   Add to cart

Exam (elaborations)

CISA Study Guide Questions & 100% Correct Answers

 6 views  0 purchase
  • Course
  • CISA
  • Institution
  • CISA

Most important step in risk analysis is to identify a. Competitors b. controls c. vulnerabilities d. liabilities :~~ c. vulnerabilities In a risk based audit planning, an IS auditor's first step is to identify: a. responsibilities of stakeholders b. high-risk areas within the organization ...

[Show more]

Preview 4 out of 175  pages

  • September 9, 2024
  • 175
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers
  • CISA
  • CISA
avatar-seller
ExamArsenal
1 | P a g e | © copyright 2024/2025 | Grade A+




CISA Study Guide Questions & 100%
Correct Answers
Most important step in risk analysis is to identify




a. Competitors

b. controls

c. vulnerabilities

d. liabilities

✓ :~~ c. vulnerabilities




In a risk based audit planning, an IS auditor's first step is to identify:




a. responsibilities of stakeholders

b. high-risk areas within the organization

c. cost centre

d. profit centre

✓ :~~ b. high-risk areas within the organization




When developing a risk-based audit strategy, an IS auditor should conduct a risk

assessment to ensure that:




Master01 | September, 2024/2025 | Latest update

, 2 | P a g e | © copyright 2024/2025 | Grade A+




a. segregation of duties to mitigate risks is in place

b. all the relevant vulnerabilities and threats are identified

c. regularity compliance is adhered to

d. business is profitable

✓ :~~ b. all the relevant vulnerabilities and threats are identified




IS auditor identified certain threats and vulnerabilities in a business process. Next,

an IS auditor should:




a. identify stakeholder for that business process

b. identifies information. assets and the underlying systems

c. discloses the threats and impacts to management

d. identifies and evaluates the existing controls

✓ :~~ d. identifies and evaluates the existing controls




Major advantaged of risk based approach for audit planning is:




a. Audit planning can be communicated to client in advance

b. Audit activity can be completed within allotted budget

c. use of latest technology for audit activities


Master01 | September, 2024/2025 | Latest update

, 3 | P a g e | © copyright 2024/2025 | Grade A+


d. Appropriate utilisation of resources for high risk areas

✓ :~~ d. Appropriate utilisation of resources for high risk areas




While determining the appropriate level of protection for an information asset an

IS auditor should primarily focus on:




a. Criticality of information assets

b. cost of information assets

c. Owner of information asset

d. result of vulnerability assessment

✓ :~~ a. Criticality of information assets




The decisions and actions of an IS auditor are MOST likely to affect which of the

following risks?




a. Inherent

b. Detection

c. Control

d. Business

✓ :~~ b. Detection




Master01 | September, 2024/2025 | Latest update

, 4 | P a g e | © copyright 2024/2025 | Grade A+


The risk of an IS auditor certifying existence of proper system and procedures

without using an inadequate test procedure is an example of:




a. internet risk

b. control risk

c. detection risk

d. audit risk


✓ :~~ c. Detection risk




Overall business risk for a particular threat can be expressed as:




a. a product of the probability. and impact

b. probability of occurrence

c. magnitude of impact

d. assumption of the risk assessment team

✓ :~~ a. a product of the probability. and impact




An IS auditor is evaluating management's risk assessment of information systems.

The IS auditor should FIRST review:




a. the controls already in place



Master01 | September, 2024/2025 | Latest update

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller ExamArsenal. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $13.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

76747 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$13.49
  • (0)
  Add to cart