Isaca CISA dumps - 100% Pass Guarantee!

Which of the following BEST describes an audit risk?

A. The company is being sued for false accusations.

B. The financial report may contain undetected material errors.

C. Employees have been misappropriating funds.

D. Key employees have not taken vacation for 2 years.

An IS auditor notes that application of super-user activity was not recorded in system logs. What is the auditor's BEST course of action?

A. Recommend a least-privilege access model.

B. Investigate the reason for the lack of logging.

C. Report the issue to the audit manager.

D. Recommend activation of super-user activity logging.

An IS auditor is reviewing the process followed in identifying and prioritizing the critical business processes. This process is part of the:

A. balanced scorecard.

B. business impact analysis (BIA).

C. operations component of the business continuity plan (BCP).

D. enterprise risk management plan.

The GREATEST benefit of using a prototyping approach in software development is that it helps to:

A. decrease the time allocated for user testing and review

B. minimize scope changes to the system

C. conceptualize and clarify requirements

D. improve efficiency of quality assurance (QA) testing

Which of the following is an IS auditor's BEST approach when prepanng to evaluate whether the IT strategy supports the organization's vision and mission?

A. Review strategic projects tor return on investments (ROls)

B. Solicit feedback from other departments to gauge the organization's maturity

C. Meet with senior management to understand business goals

D. Review the organization's key performance indicators (KPls)