Q24. What is the primary characteristic that distinguishes microservices architecture from traditional service-oriented architecture?

Microservices are very small, highly focused services that can be independently deployed and scaled

Microservices are larger and more comprehensive

Microservices eliminate the need for APIs

Microservices can only run on mainframe systems

Q27. What is the primary purpose of business impact analysis (BIA) in risk management?

To evaluate potential consequences of disruptions to business processes and systems

To calculate annual profit margins

To determine employee satisfaction levels

To assess marketing effectiveness

Q30. What is the primary advantage of implementing multi-factor authentication compared to single-factor authentication?

Multi-factor authentication requires two or more different credential types, substantially increasing security

Multi-factor authentication is less expensive

Multi-factor authentication eliminates the need for passwords entirely

Multi-factor authentication is easier for users

Q33. What does the principle of least privilege require in access control?

Restricting user access rights to the minimum necessary for legitimate job functions

Granting users access to all organizational data

Eliminating all user access to sensitive systems

Allowing temporary employees unlimited access

Q36. What type of cloud service model delivers computing resources including servers, storage, and networking over the internet?

Infrastructure-as-a-Service (IaaS)

Q37. In the COSO ERM framework, what does risk appetite represent?

The types and amounts of risk an organization is willing to accept in pursuit of value

The organization's budget for risk management activities

The number of risk managers employed

The frequency of risk assessments

Q39. What is the primary purpose of encryption in transit?

To protect data during transmission across networks from eavesdropping

To compress data for faster transmission

To eliminate the need for firewalls

Q41. What distinguishes inherent risk from residual risk in risk assessment?

Inherent risk evaluates risk before considering controls while residual risk considers control effects

Inherent risk is always lower than residual risk

Inherent risk only applies to financial risks

Residual risk is calculated using different formulas

Q47. What is the primary purpose of a SOC 1 Type II report?

To cover specified periods and include testing of control operating effectiveness relevant to user entity financial reporting

To provide marketing materials for service organizations

To replace all financial audits

To eliminate the need for user entity controls

Q48. In the context of disaster recovery, what does Recovery Time Objective (RTO) specify?

The maximum acceptable time a system can be unavailable after a disruption

The amount of budget allocated to recovery

To determine the number of recovery personnel needed

The physical location of backup systems

Q50. What is the primary characteristic of defense in depth as a cybersecurity principle?

Implementing multiple layers of security controls so if one fails, others provide continuing protection

Using only one very strong security control

Eliminating all network connections

Relying solely on perimeter firewalls

Q54. In systems development, what is the purpose of user acceptance testing (UAT)?

To confirm systems meet business needs and users can perform job functions effectively before production deployment

To test system performance under load

To evaluate server hardware specifications

Q63. In the context of IT governance, what is the primary purpose of an IT steering committee?

To provide governance forums where business and IT leaders jointly make decisions about technology strategy and investments

To provide technical support to end users

Q70. In systems development, what distinguishes agile methodologies from traditional waterfall approaches?

Agile embraces iterative development, continuous collaboration, and flexibility to accommodate changing requirements

Agile requires more documentation

Agile eliminates all testing requirements

Agile can only be used for small projects

ISC Review

Authored by MARK PARPAN

Business

University

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

25 questions

Show all answers

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Q1. Which of the following best describes the primary difference between IT governance and IT management?

IT governance focuses on operational execution while IT management establishes strategic direction

IT governance establishes strategic direction and decision-making authority while IT management focuses on day-to-day operations

IT governance is performed by technical staff while IT management is performed by business executives

IT governance manages technology infrastructure while IT management handles business processes

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Q4. According to the COBIT 2019 framework, which domain focuses on measuring IT performance and assessing whether governance and management processes operate effectively?

Align, Plan, and Organise

Build, Acquire, and Implement

Deliver, Service, and Support

Monitor, Evaluate, and Assess

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Q7. In the COSO Enterprise Risk Management Framework, which component establishes the foundation through board oversight, operating structures, and organizational culture?

Strategy and Objective-Setting

Governance and Culture

Performance

Review and Revision

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Q13. In the NIST Cybersecurity Framework, which function focuses on implementing capabilities to identify cybersecurity events promptly?

Identify

Protect

Detect

Respond

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Q16. According to COBIT's design factors methodology, which of the following is NOT one of the factors used to customize governance systems?

Enterprise size

Employee satisfaction scores

Threat landscape

Compliance requirements

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Q19. What is the primary benefit of implementing zero trust architecture compared to traditional security models?

Zero trust eliminates all security threats

Zero trust requires continuous verification regardless of location rather than assuming network-based trust

Zero trust is less expensive to implement

Zero trust removes the need for authentication

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Q21. What type of risk assessment uses descriptive scales such as low, medium, and high to rate likelihood and impact based on expert judgment?

Quantitative risk assessment

Qualitative risk assessment

Scenario-based assessment

Probabilistic assessment

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Popular Resources on Wayground

19 questions

Naming Polygons

Quiz

•

3rd Grade

10 questions

Prime Factorization

Quiz

•

6th Grade

20 questions

Math Review

Quiz

•

3rd Grade

15 questions

Fast food

Quiz

•

7th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

Discover more resources for Business

50 questions

ELA EOG Prep 7th Grade

Quiz

•

KG - University

20 questions

Guess The App

Quiz

•

KG - Professional Dev...

11 questions

dog breeds

Quiz

•

3rd Grade - Professio...

11 questions

NFL Football logos

Quiz

•

KG - Professional Dev...

19 questions

Minecraft

Quiz

•

6th Grade - Professio...

20 questions

Block Buster Movies

Quiz

•

10th Grade - Professi...

10 questions

Would you rather...

Quiz

•

KG - University

49 questions

AP Environmental Science Final Exam Review

Quiz

•

10th Grade - University

ISC Review

Q1. Which of the following best describes the primary difference between IT governance and IT management?

Q4. According to the COBIT 2019 framework, which domain focuses on measuring IT performance and assessing whether governance and management processes operate effectively?

Q7. In the COSO Enterprise Risk Management Framework, which component establishes the foundation through board oversight, operating structures, and organizational culture?

Q13. In the NIST Cybersecurity Framework, which function focuses on implementing capabilities to identify cybersecurity events promptly?

Q16. According to COBIT's design factors methodology, which of the following is NOT one of the factors used to customize governance systems?

Q19. What is the primary benefit of implementing zero trust architecture compared to traditional security models?

Q21. What type of risk assessment uses descriptive scales such as low, medium, and high to rate likelihood and impact based on expert judgment?

Q24. What is the primary characteristic that distinguishes microservices architecture from traditional service-oriented architecture?

Q25. In the context of IT strategic planning, what is the typical time horizon for IT strategic plans?

Q27. What is the primary purpose of business impact analysis (BIA) in risk management?

Access all questions and much more by creating a free account

Popular Resources on Wayground

Discover more resources for Business