CertsTopics Logo

Winter Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CISA Premium Exam Questions

Page: 22 / 90
Total 1195 questions
Get CISA Full Access Download CISA PDF

Certified Information Systems Auditor Questions and Answers

Question 85

Which of the following would BEST prevent an arbitrary application of a patch?

Options:

A.

Database access control

B.

Established maintenance windows

C.

Network based access controls

D.

Change management

Question 86

What type of control has been implemented when secure code reviews are conducted as part of a deployment program?

Options:

A.

Monitoring

B.

Deterrent

C.

Detective

D.

Corrective

Question 87

An organization requires the use of a key card to enter its data center. Recently, a control was implemented that requires biometric authentication for each employee.

Which type of control has been added?

Options:

A.

Corrective

B.

Compensating

C.

Preventive

D.

Detective

Question 88

An IS auditor learns that a business owner violated the organization's security policy by creating a web page with access to production data. The auditor's NEXT step should be to:

Options:

A.

determine if sufficient access controls exist.

B.

assess the sensitivity of the production data.

C.

shut down the web page.

D.

escalate to senior management.

Page: 22 / 90
Total 1195 questions
Get CISA Full Access Download CISA PDF