Online Access Free CISA Exam Questions

Which of the following should be an IS auditor's GREATEST concern when evaluating an organization's ability to recover from system failures?

• A.Inadequate backup job monitoring
• B.Data backups being stored onsite
• C.Lack of periodic data backup restoration testing
• D.Lack of documentation for data backup procedures

An IS auditor reviewing database security should be MOST concerned if the database administrator (DBA):

• A.resolves database locks.
• B.assesses database performance.
• C.executes recovery procedures.
• D.approves access roles.

Which of the following is a concern associated with virtualization?

• A.One host may have multiple versions of the same operating system.
• B.Performance issues with the host could impact the guest operating systems.
• C.Processing capacity may be shared across multiple operating systems.
• D.The physical footprint of servers could decrease within the data center.

An IS auditor learns that an in-house system development life cycle (SDLC) project has not met user specifications. The auditor should FIRST examine requirements from which of the following phases?

• A.Configuration phase
• B.Quality assurance (QA) phase
• C.User training phase
• D.Development phase

The operations team of an organization has reported an IS security attack Which of the following should be the FIRST step for the security incident response team?

• A.Report results to management
• B.Prioritize resources for corrective action
• C.Perform a damage assessment
• D.Document lessons learned