Cisa exam preparation Study guides, Class notes & Summaries

CISA Study Notes Exam 181 Questions with Verified Answers Who is responsible for imposing an IT governance model encompassing IT strategy, information security, and formal enterprise architectural mandates? - CORRECT ANSWER IT executives and the Board of Directors The party that performs strategic planning, addresses near-term and long-term requirements aligning business objectives, and technology strategies. - CORRECT ANSWER The Steering Committee What three elements allow validation o...

CISA examtopics 301-400 Exam Questions with Verified Answers 301. An organization has begun using social media to communicate with current and potential clients. Which of the following should be of PRIMARY concern to the auditor? A. Using a third-party provider to host and manage content B. Lack of guidance on appropriate social media usage and monitoring C. Negative posts by customers affecting the organization's image D. Reduced productivity of stuff using social media - CORRECT A...

Certified Information Systems Auditor (CISA) Cert Guide 109 Questions with Verified Answers Which of the following best describes a baseline document? a. A PCI industry standard requiring a 15-minute session timeout b. Installation step recommendations from the vendor for an Active Directory server c. A network topography diagram of the Active Directory forest d. Security configuration settings for an Active Directory server - CORRECT ANSWER D. A baseline is correct because it is a platfo...

CISA Exam 95 Questions with Verified Answers Question #:4 - (Exam Topic 3) An IS auditor is assigned to review the IS department s quality procedures. Upon contacting the IS manager, the auditor finds that there is an informal unwritten set of standards Which of the following should be the auditor's NEXT action1? A. Make recommendations to IS management as to appropriate quality standards B. Postpone the audit until IS management implements written standards C. Document and lest complian...

CISA Study Notes Exam 181 Questions with Verified Answers Who is responsible for imposing an IT governance model encompassing IT strategy, information security, and formal enterprise architectural mandates? - CORRECT ANSWER IT executives and the Board of Directors The party that performs strategic planning, addresses near-term and long-term requirements aligning business objectives, and technology strategies. - CORRECT ANSWER The Steering Committee What three elements allow validation o...

CISA Practice Exam 559 Questions with Verified Answers It is important to understand the organization and its environment in order to effectively pinpoint the organization's key risk. One specific factor is an understanding of: - CORRECT ANSWER The organization's selection and application of policies and procedures Of the following, which is not a way to treat a risk? - CORRECT ANSWER Ignore it The three focus areas that management must address in order to govern IT include all of the...

CISA Chapter 1 Exam 48 Questions with Verified Answers Audit Charter (P.32) - CORRECT ANSWER The overarching document that outlines the scope, authority, and responsibilities of the internal audit function. (General audits) Engagement Letter (P.32) - CORRECT ANSWER The overarching document that outlines the scope, authority, and responsibilities of the external audit function. (Focused audits) Risk Factors (P.33) - CORRECT ANSWER Factors that influence the frequency and/or impact of ...

CISA Practice Exam 323 Questions with Verified Answers Identify the most critical element from the following for the successful implementation and ongoing regular maintenance of an information security policy. [BAC] A.Management support and approval for the information security policy B. Understanding of the information security policy by all appropriate parties C. Punitive actions for any violation of information security rules D. Stringent access control monitoring of information secu...

CISA Flashcards Protection of Information Assets Exam 99 Questions with Verified Answers Define the following terms: decompiling, modular stage, due care, negligence, basic care, ordinary care, and extraordinary care. - CORRECT ANSWER Decompiling is the act of dividing a large auditing task into smaller audits so that all objectives and requirements can be met Modular stage is a type of audit created by decompiling. Due care is the degree of care for a client that auditors must demonstrate w...

CISA Exam 92 Questions with Verified Answers What is the definition of audit? - CORRECT ANSWER Auditing is a detailed and specific evaluation of a process, procedure, organization, job function, or system, in which results are gathered and reported. What is the purpose of ethics? - CORRECT ANSWER To mandate the professional and personal conduct of auditors According to the ISACA Code of Ethics is an auditor allowed to share the results of an audit with other personnel? - CORRECT ANSWER...