New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Newly Released Isaca CISA Exam PDF

Page: 23 / 90
Total 1195 questions

Certified Information Systems Auditor Questions and Answers

Question 89

During which phase of the software development life cycle should an IS auditor be consulted to recommend security controls?

Options:

A.

Design and development

B.

Final acceptance testing

C.

Implementation of software

D.

Requirements definition

Question 90

Which of the following is MOST important for an IS auditor to confirm when reviewing an organization's incident response management program?

Options:

A.

All incidents have a severity level assigned.

B.

All identified incidents are escalated to the CEO and the CISO.

C.

Incident response is within defined service level agreements (SLAs).

D.

The alerting tools and incident response team can detect incidents.

Question 91

Which of the following is the PRIMARY objective of enterprise architecture (EA)?

Options:

A.

Maintaining detailed system documentation

B.

Managing and planning for IT investments

C.

Executing customized development and delivery of projects

D.

Enforcing the IT policy across the organization

Question 92

A new regulation has been enacted that mandates specific information security practices for the protection of customer data. Which of the following is MOST useful for an IS auditor to review when auditing against the regulation?

Options:

A.

Compliance gap analysis

B.

Customer data protection roles and responsibilities

C.

Customer data flow diagram

D.

Benchmarking studies of adaptation to the new regulation

Page: 23 / 90
Total 1195 questions