FreeIsacaCISA PracticeExamQ&As CertifiedInformationSystemsAuditor https://www.passcert.com/CISA.html
FreeCISAPracticeExamFromPasscertforYourBestPreparation 1.WhichofthefollowingwouldbetoMOSTconcernwhendetermine ifinformationassetsareadequatelysafequatelysafeguardedduring transportanddisposal? A.Lackofappropriatelabelling B.Lackofrecentawarenesstraining. C.Lackofpasswordprotection D.Lackofappropriatedataclassification Answer:D
FreeCISAPracticeExamFromPasscertforYourBestPreparation 2.Whenreviewinganorganization'sinformationsecuritypolicies,anISauditor shouldverifythatthepolicieshavebeendefinedPRIMARILYonthebasisof: A.ariskmanagementprocess. B.aninformationsecurityframework. C.pastinformationsecurityincidents. D.industrybestpractices. Answer:B
FreeCISAPracticeExamFromPasscertforYourBestPreparation 3.Duringanongoingaudit,managementrequestsabriefingonthe findingstodate. WhichofthefollowingistheISauditor'sBESTcourseofaction? A.Reviewworkingpaperswiththeauditee. B.Requesttheauditeeprovidemanagementresponses. C.Requestmanagementwaituntilafinalreportisreadyfor discussion. D.Presentobservationsfordiscussiononly. Answer:D
FreeCISAPracticeExamFromPasscertforYourBestPreparation 4.WhichofthefollowingistheBESTrecommendationtoprevent fraudulentelectronicfundstransfersbyaccountspayableemployees? A.Periodicvendorreviews B.Dualcontrol C.Independentreconciliation D.Re-keyingofmonetaryamounts E.Engageanexternalsecurityincidentresponseexpertforincident handling. Answer:B
FreeCISAPracticeExamFromPasscertforYourBestPreparation 5.TheimplementationofanITgovernanceframeworkrequiresthat theboardofdirectorsofanorganization: A.AddresstechnicalITissues. B.BeinformedofallITinitiatives. C.HaveanITstrategycommittee. D.ApprovetheITstrategy. Answer:D
FreeCISAPracticeExamFromPasscertforYourBestPreparation 6.Anorganization'senterprisearchitecture(EA)departmentdecides tochangealegacysystem'scomponentswhilemaintainingits originalfunctionality. WhichofthefollowingisMOSTimportantforanISauditorto understandwhenreviewingthisdecision? A.Thecurrentbusinesscapabilitiesdeliveredbythelegacysystem B.Theproposednetworktopologytobeusedbytheredesigned system C.Thedataflowsbetweenthecomponentstobeusedbythe redesignedsystem D.Thedatabaseentityrelationshipswithinthelegacysystem Answer:A
FreeCISAPracticeExamFromPasscertforYourBestPreparation 7.ISmanagementhasrecentlydisabledcertainreferentialintegrity controlsinthedatabase managementsystem(DBMS)softwaretoprovideusersincreased queryperformance. WhichofthefollowingcontrolswillMOSTeffectivelycompensatefor thelackofreferentialintegrity? A.Morefrequentdatabackups B.Periodictablelinkchecks C.Concurrentaccesscontrols D.Performancemonitoringtools Answer:B
FreeCISAPracticeExamFromPasscertforYourBestPreparation 8.WhichofthefollowingisMOSTusefulfordeterminingwhetherthe goalsofITarealignedwiththeorganization'sgoals? A.Balancedscorecard B.Enterprisedashboard C.Enterprisearchitecture(EA) D.Keyperformanceindicators(KPIs) Answer:B
FreeCISAPracticeExamFromPasscertforYourBestPreparation 9.Duringthedesignphaseofasoftwaredevelopment project,thePRIMARYresponsibilityofanISauditoristo evaluatethe: A.Futurecompatibilityoftheapplication. B.Proposedfunctionalityoftheapplication. C.Controlsincorporatedintothesystemspecifications. D.Developmentmethodologyemployed. Answer:C
10.
A.thesamehashingalgorithmasthesender'stocreateabinaryimage ofthefile.
B.adifferenthashingalgorithmfromthesender'stocreateabinary imageofthefile.
C.thesamehashingalgorithmasthesender'stocreateanumerical representationofthefile.
D.adifferenthashingalgorithmfromthesender'stocreateanumerical representationofthefile.
FreeCISAPracticeExamFromPasscertforYourBestPreparation
Toconfirmintegrityforahashedmessage,thereceivershoulduse:
Answer:A