Online Access Free ISACA.CISA.v2021-11-29.q567 Practice Test (Page 19)

CISA Exam Question 86

An IS auditor is assessing an organization's implementation of a virtual network. Which of the following observations should be considered the MOST significant risk?

A.Virtual network devices are replicated and stored in offline mode.

B.Traffic over the virtual network is not visible to security protection devices.

C.Communication performance over the virtual network is not monitored.

D.Physical and virtual network configurations are not managed by the same team.

CISA Exam Question 87

Which of the following is the PRIMARY purpose of conducting a business impact analysis (BIA)?

A.Identifying risk mitigation options

B.Identifying key business risks

C.Identifying critical business processes

D.Identifying the threat environment

CISA Exam Question 88

The PRIMARY reason for using digital signatures is to ensure data:

A.confidentiality.

B.integrity.

C.availability.

D.timeliness.

CISA Exam Question 89

IT service engineers at a large organization are unable to effectively prioritize system-generated alerts from hundreds of applications running across multiple servers and databases. As a result many alerts are often ignored, leading to major problems including downtime. Which of the following is the BEST IS audit recommendation to address this situation?

A.Develop a classification scheme that prioritizes alerts according to potential business impact.

B.Group alerts from related systems and immediately escalate to the application owner.

C.Implement a threshold management system that prioritizes alerts over a certain age.

D.Prioritize alerts from legacy applications that may require remote support from external vendors.

CISA Exam Question 90

While planning a security audit, an IS auditor is made aware of a security review carried out by external consultants. It is MOST implement for the auditor to:

A.Review similar reports issued by the consultants.

B.Re-perform the security review

C.Accept the finding and conclusion of the consultants

D.Asses the objectively and competence of the consultant

Other Version: 5779ISACA.CISA.v2025-06-20.q647; 1794ISACA.CISA.v2025-06-11.q606; 2243ISACA.CISA.v2023-03-04.q272; 2341ISACA.CISA.v2022-10-31.q203; 2449ISACA.CISA.v2022-03-29.q126; 123ISACA.Examprepaway.CISA.v2022-02-10.by.barret.126q.pdf; 36ISACA.Actualvce.CISA.v2021-08-31.by.ralap.101q.pdf

Latest Upload: 273ISACA.CGEIT.v2025-09-19.q537; 153Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 154Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 243Nutanix.NCP-US-6.5.v2025-09-16.q73; 265Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 325CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISA Exam Question 86

CISA Exam Question 87

CISA Exam Question 88

CISA Exam Question 89

CISA Exam Question 90

Download PDF File