An IS auditor finds that a disaster recovery plan (DRP) for critical business functions does not cover all systems. Which of the following is the most appropriate course of action for the IS auditor?
CISA Domain 1
University
•30 Qs
Similar activities
7 gab 2 audit it
University
•30 Qs
AUDIT SI
University
•30 Qs
week 6 workshop quiz for sec+
University - Professional Development
•25 Qs
037_Misconfiguration Vulnerabilities – CompTIA Security+
9th Grade - University
•25 Qs
IT AUDIT and CONTROL
University
•25 Qs
IAS101
University
•30 Qs
QUIZ PRA UTS-ASI-UBSI_PERTEMUAN 7
University
•30 Qs
QUIZ PRA UTS_ASI_KELAS 11.8A.05
University
•30 Qs
CISA Domain 1
Quiz
•
Computers
•
University
•
Medium
MARVIN SORIANO
Used 116+ times
FREE Resource
30 questions
Show all answers
1.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Alert management and evaluate the impact of not covering all systems.
Cancel the audit.
Complete the audit of the systems covered by the existing DRP.
Postpone the audit until the systems are added to the DRP.
Answer explanation
An IS auditor should make management aware that some systems are omitted from the disasterrecovery plan (DRP). An IS auditor should continue the audit and include an evaluation of theimpact of not including all systems in the DRP
2.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Which of the following is the primary purpose of a risk-based audit?
High-impact areas are addressed first.
Audit resources are allocated efficiently.
Material areas are addressed first.
Management concerns are prioritized.
Answer explanation
Material risk is audited according to the risk ranking, thus enabling the audit team toconcentrate on high-risk areas first.
3.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Which of the following would be expected to approve the audit charter?
Chief Financial Officer
Chief Executive Officer
Audit Steering Committee
Audit Committee
Answer explanation
One of the primary functions of the audit committee is to create and approve the audit charter.
4.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
The main purpose of the annual IS audit plan is to:
Allocate resources for audits.
Reduce the impact of audit risk.
Develop a training plan for auditors.
Minimize the audit costs.
Answer explanation
IS audit assignments need to be accomplished with limited time and human resources. Thus, audits are scheduled and prioritized as determined by IS audit management.
5.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Which of the following is most important to ensure that effective application controls are maintained?
Exception Reporting
Manager Oversight
Control Self-Assessment
Peer Reviews
Answer explanation
CSA is the review of business objectives and internal controls in a formal and documentedcollaborative process. It includes testing the design of automated application controls.
6.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Which of the following represents an example of a preventive control with respect to IT personnel?
A security guard stationed at the server room door
An intrusion detection system
Implementation of a badge entry system for the IT facility
A fire suppression system in the server room
Answer explanation
Preventive controls are used to reduce the probability of an adverse event. A badge entry systemprevents unauthorized entry to the facility.
7.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
An IS auditor performing an audit of the risk assessment process should first confirm that:
Reasonable threats to the information assets are identified.
Technical and organizational vulnerabilities have been analyzed.
Assets have been identified and ranked.
The effects of potential security breaches have been evaluated.
Answer explanation
Identification and ranking of information assets (e.g., data criticality, sensitivity, locations ofassets) will set the tone or scope of how to assess risk in relation to the organizational value ofthe asset.
Create a free account and access millions of resources
Create resources
Host any resource
Get auto-graded reports
Microsoft
Apple
Others
Similar Resources on Quizizz
30 questions
Audit sistem informasi
Quiz
•
University
34 questions
Module 1.1 - Introduction to GRC
Quiz
•
University
25 questions
Chapters 13 and 14 IT Automation Review
Quiz
•
University
30 questions
QUIZ PRA UTS-ASI-UBSI_PERTEMUAN 7
Quiz
•
University
30 questions
AUDIT SI
Quiz
•
University
25 questions
CO2517
Quiz
•
University
35 questions
ISC2 - CC - Chapter 1 - Module 2
Quiz
•
University
29 questions
Module10-12
Quiz
•
University
Popular Resources on Quizizz
15 questions
Character Analysis
Quiz
•
4th Grade
17 questions
Chapter 12 - Doing the Right Thing
Quiz
•
9th - 12th Grade
10 questions
American Flag
Quiz
•
1st - 2nd Grade
20 questions
Reading Comprehension
Quiz
•
5th Grade
30 questions
Linear Inequalities
Quiz
•
9th - 12th Grade
20 questions
Types of Credit
Quiz
•
9th - 12th Grade
18 questions
Full S.T.E.A.M. Ahead Summer Academy Pre-Test 24-25
Quiz
•
5th Grade
14 questions
Misplaced and Dangling Modifiers
Quiz
•
6th - 8th Grade