Cisa planning set 1 Study guides, Class notes & Summaries

CISA Flashcards Protection of Information Assets Exam 99 Questions with Verified Answers Define the following terms: decompiling, modular stage, due care, negligence, basic care, ordinary care, and extraordinary care. - CORRECT ANSWER Decompiling is the act of dividing a large auditing task into smaller audits so that all objectives and requirements can be met Modular stage is a type of audit created by decompiling. Due care is the degree of care for a client that auditors must demonstrate w...

CISA Practice Exam 559 Questions with Verified Answers It is important to understand the organization and its environment in order to effectively pinpoint the organization's key risk. One specific factor is an understanding of: - CORRECT ANSWER The organization's selection and application of policies and procedures Of the following, which is not a way to treat a risk? - CORRECT ANSWER Ignore it The three focus areas that management must address in order to govern IT include all of the...

CISA EXAM 1|45 Questions with Verified Answers 1. An IS auditor should expect which of the following items to be included in the request for proposal (RFP) when IS is procuring services from an independent service provider (ISP)? A References from other customers B Service level agreement (SLA) template C Maintenance agreement D Conversion plan - CORRECT ANSWER The answer is A An IS auditor should look for an independent verification that the ISP can perform the tasks being ...

CISA examtopics 201-300 Exam Questions with Verified Answers 201. During a project meeting for the implementation of an enterprise resource planning (ERP). a new requirement is requested by the finance department. Which of the following would BEST indicate to an IS auditor that the resulting risk to the project has been assessed? A. The project status as reported in the meeting minutes B. The analysis of the cost and time impact of the requirement C. The updated business requirements D...

CISA Practice Exam 323 Questions with Verified Answers Identify the most critical element from the following for the successful implementation and ongoing regular maintenance of an information security policy. [BAC] A.Management support and approval for the information security policy B. Understanding of the information security policy by all appropriate parties C. Punitive actions for any violation of information security rules D. Stringent access control monitoring of information secu...

Class 10 Information Systems Auditing Exam 31 Questions with Verified Answers ISACA - CORRECT ANSWER - Information Systems Audit and Control Association •Founded 1969. •An independent, nonprofit, global association that engages in the development, adoption and use of globally accepted, industry leading knowledge and practices for information systems •Provides practical guidance, benchmarks and tools for enterprises that use information systems •It defines the role of governance, s...

CISA Study Guide Exam 427 Questions with Verified Answers Most important step in risk analysis is to identify a. Competitors b. controls c. vulnerabilities d. liabilities - CORRECT ANSWER c. vulnerabilities In a risk based audit planning, an IS auditor's first step is to identify: a. responsibilities of stakeholders b. high-risk areas within the organization c. cost centre d. profit centre - CORRECT ANSWER b. high-risk areas within the organization When developing a risk-...

CISA Domain 2 Governance and Management of IT Exam 68 Questions with Verified Answers Governance of IT Enterprise (GEIT) - CORRECT ANSWER system in which ALL stakeholders (including board, senior management, internal customers and departments) provide input into decison making process about the use of IT resources on behalf of stakeholders who expect interests to be met responsibility of Board of directors and exec management Concerned with: IT delivering value to the business AND IT...

ACC 580 Exam 1 CISA Book 45 Questions with Verified Answers Which of the following outlines the overall authority to perform an IS audit? A. The audit scope, with goals and objectives B. A request from management to perform an audit C. The approved audit charter D. The approved audit schedule - CORRECT ANSWER C. The approved audit charter In performing a risk-based audit, which risk assessment is completed initially by the IS auditor? A. Detection Risk assessment B. Control Risk asse...

Domain 4 CISA Exam 325 Questions with Verified Answers what identifies and locates assets within a limited radius? - CORRECT ANSWER RFID- Radio Frequency Identification What uses radio waves to identify tagged objects? - CORRECT ANSWER RFID- Radio Frequency Identification In (RFID) Radio Frequency Identification, uses radio waves to identify TAGGED objects. What is included in a tag? - CORRECT ANSWER A tag includes a microchip and antenna. Microchip stores info and Antenna transmits inf...