8. _____________________ involves verifying the identity of users attempting to access systems, while _____________________ ensures they have the necessary permissions. Effective methods include passwords, biometrics, and multi-factor authentication.

d) User authentication; authorization

a) User authorization; authentication

b) Access control; authentication

c) Authorization; user authentication

9. Which of the following best describes the concept of "data integrity" in an IT system?

b) Ensuring that data is complete, accurate, and consistent over its lifecycle

a) Preventing unauthorized access to confidential data

c) Encrypting all sensitive data

d) Monitoring for suspicious activities

10. Which of the following is NOT a typical responsibility of an IT department when implementing general controls?

c) Conducting financial audits for internal controls

a) Establishing and enforcing system security policies

b) Managing user accounts and permissions

d) Ensuring the system remains available and resilient to threats

14. The change management process involves:

a) strategizing, testing, and authorizing changes to IT systems to minimize disruptions and maintain compliance with security protocols

b) testing, planning, and approving changes to IT systems to minimize disruption and ensure compliance with security standards.

c) scoping and approving changes to IT systems to minimize disruption and ensure compliance with security standards.

d) planning and testing changes to IT systems to minimize disruptions and maintain compliance with security protocols

15. Which of the following is true about access controls in ITGC?

b) Access controls ensure that users have the appropriate level of access to data and systems

a) Access controls are only needed for applications, not for operating systems

c) Access controls should only be applied after a data breach has occurred

d) Access controls are not necessary if encryption is used

17. What is the key goal of disaster recovery planning under ITGC?

b) To ensure the company can restore its IT systems and data in the event of a disaster

a) To ensure that employees know how to operate backup systems

c) To eliminate all physical threats to IT systems

d) To upgrade hardware systems during non-peak hours

18. The System Development Lifecycle (SDLC) includes several key phases. What are those?

d) planning, analysis, design, development, testing, and deployment

a) analysis, planning, design, development, testing, and deployment

b) planning, analysis, design, testing, development, and deployment

c) planning, analysis, design, testing, and deployment

19. Which of the following would be part of an organization's ITGC framework for ensuring confidentiality?

a) Implementing end-to-end encryption for sensitive communications

b) Providing full system access to all employees

c) Ignoring external threats and focusing only on internal controls

d) Limiting network traffic to ensure no downtime

21. What is the purpose of the segregation of duties in IT General Controls?

b) To ensure no one person has the authority to perform conflicting functions, minimizing the risk of fraud

a) To ensure that there is clear documentation of system configurations

c) To provide training to users on system usage

d) To set up automated reports for auditing

22. Which of the following best describes the concept of “logical security” in ITGC?

c) Securing data and systems through passwords, encryption, and access controls

a) Implementing physical barriers to protect IT infrastructure

b) Establishing procedures for data backup

d) Monitoring physical security of server rooms

23. In IT General Controls, “physical security” refers to:

b) The protection of IT infrastructure from physical threats such as fire, theft, or natural disasters

a) The encryption of sensitive data

c) The management of user passwords

d) The protection of electronic communication between devices

24. Which of the following is a key component of IT General Controls related to change management?

a) Ensuring no software updates are applied without proper testing and authorization

b) Allowing all employees to access administrative systems

c) Maintaining detailed user manuals for all software

d) Automatically backing up all data every hour

25. In ITGC, what is the purpose of a “user access review”?

b) To ensure that employees have the appropriate access levels and privileges based on their roles

a) To check if employees are following security policies

c) To identify which users need additional training on software

d) To test if users are correctly using system passwords

IT General Controls - Set A

Authored by Karissa Swing

Professional Development

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

25 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 1 pt

1. These are vital for safeguarding information systems and ensuring data integrity and security.

a) Network segmentation

b) Network authentication

c) Security controls

d) IT general controls

MULTIPLE CHOICE QUESTION

1 min • 1 pt

2. Which of the following actions would NOT be considered a preventive IT control?

a) User password complexity requirements

b) Antivirus software installation

c) System vulnerability scanning

d) Conducting system audits after an incident

MULTIPLE CHOICE QUESTION

1 min • 1 pt

3. It involves real-time tracking of system activities and configurations to detect anomalies and ensure compliance with security policies.

a) Checking

b) Continuous monitoring

c) Compliance assurance

d) SOC 2

MULTIPLE CHOICE QUESTION

1 min • 1 pt

4. It is performed to evaluate the effectiveness of internal controls and pinpoint areas where processes can be improved.

a) Authentication

b) Monitoring

c) Audit

d) Cross-checking

MULTIPLE CHOICE QUESTION

1 min • 1 pt

5. Which of the following is a key factor in ensuring the effectiveness of IT General Controls?

a) Allowing users to make changes to system settings without approval

b) Constant software updates

c) Clear communication of policies and procedures to all employees

d) Giving all users full access to company data

MULTIPLE CHOICE QUESTION

1 min • 1 pt

6. It is essential for safeguarding data against loss and ensuring rapid recovery in the event of incidents.

a) Data Follow-Up and Recovery

b) Data Restoration

c) Data Backup and Recovery

d) Data Protection

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

7. Which statement/s is/are incorrect?
I. All changes should be documented and tracked to ensure accountability.
II. Implementing a structured change management process helps organizations effectively manage change while maximizing risks.
III. A strong change management process protects organizations from potential security vulnerabilities that could emerge during transitions.
IV. Approval processes ensure that only necessary and unauthorized changes are implemented.

a) II, III, and IV

b) II and IV

c) I, II, and III

d) III and IV

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

25 questions

Audit Intern (0526)

Quiz

•

Professional Development

20 questions

UNIT-3_MOSFET Quiz

Quiz

•

Professional Development

20 questions

IGNITE Batch - Gate 1 - Lifeskills Day 2 Quiz - 12Sep23

Quiz

•

Professional Development

20 questions

Hospitality Workshop

Quiz

•

Professional Development

20 questions

Service Excellence

Quiz

•

Professional Development

20 questions

Vocabulary: Housekeeping

Quiz

•

University - Professi...

20 questions

Review Materi METEOROLOGI

Quiz

•

Professional Development

20 questions

Dussehra (Ramayana) quiz

Quiz

•

Professional Development

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Professional Development

16 questions

Parallel, Perpendicular, and Intersecting Lines

Quiz

•

KG - Professional Dev...

20 questions

NCAA Logo Quiz

Quiz

•

Professional Development

20 questions

Easter trivia

Quiz

•

12th Grade - Professi...