Backout - Study guides, Class notes & Summaries

CISA Domain 3 Exam 113 Questions with Verified Answers Integrated Test Facility (ITF) - CORRECT ANSWER - Fictitious entity is created in LIVE environment - This technique allows auditor to open a dummy account - Auditor can enter dummy or test transactions and verify the processing and results of these transactions for correctness - Processed results and expected results are compared to verify that systems are operating correctly - Example: A dummy asset of $100,000/- is entered into syst...

GMS805 Final exam Weeks 8-12 Practice Questions and Answers What are the main characteristics of an inventory policy? - Answer️️ -WHen to order (ROP) and how much to order (EOQ) Product availability is measured by - Answer️️ -Cycle service level, or fill rate Cycle service level - Answer️️ -Amount of customer demand satisfied from available invetory The optimal level of product availability is one that - Answer️️ - Maximizes supply chain profitability. What are some str...

QSAs must retain work papers for a minimum of _______ years. It is a recommendation for ISAs to do the same. - ANSWER-3 According to PCI DSS requirement 1, Firewall and router rule sets need to be reviewed every _____ months. - ANSWER-6 At least ______________ and prior to the annual assessment the assessed entity: - Identifies all locations and flows of cardholder data to verify they are included in the CDE - Confirms the accuracy of their PCI DSS scope - Retains their scoping doc...

SAQ-A - e-commerce or telephone order merchants; processing fully outsourced to validated 3rd party. No processing, transmitting, storing done by merchant SAQ-B - merchants with imprint machines and/or merchant with only standalone dial-out terminals SAQ-B-IP - Same as SAQ-B but the terminals not dial-out, the terminals have an IP connection SAQ-C - Merchants with payment apps connected to the Internet but have no CHD storage. Not available if doing ecommerce SAQ-C-VT - Merchants who...

CISA EXAM 2|150 Questions with Verified Answers Q1) Which of the following is the MOST efficient and sufficiently reliable way to test the design effectiveness of a change control process? A) Interview personnel in charge of the change control process B) Perform an end-to-end walk-through of the process C) Test a sample of authorized changes D) Test a sample population of change requests - CORRECT ANSWER B) Perform an end-to-end walk-through of the process is correct. Observatio...

QSAs must retain work papers for a minimum of _______ years. It is a recommendation for ISAs to do the same. - ANSWER-3 According to PCI DSS requirement 1, Firewall and router rule sets need to be reviewed every _____ months. - ANSWER-6 At least ______________ and prior to the annual assessment the assessed entity: - Identifies all locations and flows of cardholder data to verify they are included in the CDE - Confirms the accuracy of their PCI DSS scope - Retains their scoping doc...

QSAs must retain work papers for a minimum of _______ years. It is a recommendation for ISAs to do the same. 3 According to PCI DSS requirement 1, Firewall and router rule sets need to be reviewed every _____ months. 6 At least ______________ and prior to the annual assessment the assessed entity: - Identifies all locations and flows of cardholder data to verify they are included in the CDE - Confirms the accuracy of their PCI DSS scope - Retains their scoping documentation ...

WGU Master's Course C706 - Secure Software Design Which due diligence activity for supply chain security should occur in the initiation phase of the software acquisition life cycle? A Developing a request for proposal (RFP) that includes supply chain security risk management B Lessening the risk of disseminating information during disposal C Facilitating knowledge transfer between suppliers D Mitigating supply chain security risk by providing user guidance correct answer- A Whi...

Which due diligence activity for supply chain security should occur in the initiation phase of the software acquisition life cycle? A Developing a request for proposal (RFP) that includes supply chain security risk management B Lessening the risk of disseminating information during disposal C Facilitating knowledge transfer between suppliers D Mitigating supply chain security risk by providing user guidance Correct answer- A Which due diligence activity for supply chain security investi...

pci isa With Correct Answers Verified By Experts pci isa QSAs must retain work papers for a minimum of _______ years. It is a recommendation for ISAs to do the same. - ANS 3 According to PCI DSS requirement 1, Firewall and router rule sets need to be reviewed every _____ months. - ANS 6 At least ______________ and prior to the annual assessment the assessed entity: - Identifies all locations and flows of cardholder data to verify they are included in the CDE - Confirms th...