Cisa planning set 3 - Study guides, Class notes & Summaries

CISA Flashcards Protection of Information Assets Exam 99 Questions with Verified Answers Define the following terms: decompiling, modular stage, due care, negligence, basic care, ordinary care, and extraordinary care. - CORRECT ANSWER Decompiling is the act of dividing a large auditing task into smaller audits so that all objectives and requirements can be met Modular stage is a type of audit created by decompiling. Due care is the degree of care for a client that auditors must demonstrate w...

CISA InFo Domain 1 Exam 20 Questions with Verified Answers C. Mode Mode identifies the number of times a particular number is duplicated more than once. For example the in the followinglist of numbers find the mode: The mode is 3. - CORRECT ANSWER In sampling which of the following is a measure of central tendency? A. Variance B. Range C. Mode D. Standard Deviation A. Ability, as an IS auditor to be independent of existing IS relationships. Independence should be continually as...

CISA examtopics 201-300 Exam Questions with Verified Answers 201. During a project meeting for the implementation of an enterprise resource planning (ERP). a new requirement is requested by the finance department. Which of the following would BEST indicate to an IS auditor that the resulting risk to the project has been assessed? A. The project status as reported in the meeting minutes B. The analysis of the cost and time impact of the requirement C. The updated business requirements D...

CISA Practice Exam 323 Questions with Verified Answers Identify the most critical element from the following for the successful implementation and ongoing regular maintenance of an information security policy. [BAC] A.Management support and approval for the information security policy B. Understanding of the information security policy by all appropriate parties C. Punitive actions for any violation of information security rules D. Stringent access control monitoring of information secu...

CISA EXAM 1|45 Questions with Verified Answers 1. An IS auditor should expect which of the following items to be included in the request for proposal (RFP) when IS is procuring services from an independent service provider (ISP)? A References from other customers B Service level agreement (SLA) template C Maintenance agreement D Conversion plan - CORRECT ANSWER The answer is A An IS auditor should look for an independent verification that the ISP can perform the tasks being ...

CISA- Planning- Set 3.

CISA Practice Exam 559 Questions with Verified Answers It is important to understand the organization and its environment in order to effectively pinpoint the organization's key risk. One specific factor is an understanding of: - CORRECT ANSWER The organization's selection and application of policies and procedures Of the following, which is not a way to treat a risk? - CORRECT ANSWER Ignore it The three focus areas that management must address in order to govern IT include all of the...

CISA Study Guide Exam 427 Questions with Verified Answers Most important step in risk analysis is to identify a. Competitors b. controls c. vulnerabilities d. liabilities - CORRECT ANSWER c. vulnerabilities In a risk based audit planning, an IS auditor's first step is to identify: a. responsibilities of stakeholders b. high-risk areas within the organization c. cost centre d. profit centre - CORRECT ANSWER b. high-risk areas within the organization When developing a risk-...

CISA Domain 2 Governance and Management of IT Exam 68 Questions with Verified Answers Governance of IT Enterprise (GEIT) - CORRECT ANSWER system in which ALL stakeholders (including board, senior management, internal customers and departments) provide input into decison making process about the use of IT resources on behalf of stakeholders who expect interests to be met responsibility of Board of directors and exec management Concerned with: IT delivering value to the business AND IT...

CISA- Planning- Set 3 (1).