Online Access Free ISACA.CISA.v2023-03-04.q272 Practice Test (Page 29)

CISA Exam Question 136

An IS auditor wants to determine who has oversight of staff performing a specific task and is referencing the organization's RACI chart. Which of the following roles within the chart would provide this information?

A.Accountable

B.Informed

C.Responsible

D.Consulted

CISA Exam Question 137

Which of the following should be done FIRST when planning a penetration test?

A.Obtain management consent for the testing.

B.Determine reporting requirements for vulnerabilities.

C.Execute nondisclosure agreements (NDAs).

D.Define the testing scope.

CISA Exam Question 138

During the planning phase of a data loss prevention (DLP) audit, management expresses a concern about mobile computing. Which of the following should the IS auditor identity as the associated risk?

A.Lack of governance and oversight for IT infrastructure and applications

B.Increased need for user awareness training

C.Increased vulnerability due to anytime, anywhere accessibility

D.The use of the cloud negatively impacting IT availably

CISA Exam Question 139

in a post-implantation Nation review of a recently purchased system it is MOST important for the iS auditor to determine whether the:

A.test scenarios reflected operating activities.

B.stakeholder expectations were identified

C.vendor product offered a viable solution.

D.user requirements were met.

CISA Exam Question 140

Which of the following would BEST help to ensure that potential security issues are considered by the development team as part of incremental changes to agile-developed software?

A.Include a mandatory step to analyze the security impact when making changes.

B.Assign the security risk analysis to a specially trained member of the project management office.

C.Mandate that the change analyses are documented in a standard format.

D.Deploy changes in a controlled environment and observe for security defects.

Other Version: 5811ISACA.CISA.v2025-06-20.q647; 1812ISACA.CISA.v2025-06-11.q606; 2353ISACA.CISA.v2022-10-31.q203; 2452ISACA.CISA.v2022-03-29.q126; 123ISACA.Examprepaway.CISA.v2022-02-10.by.barret.126q.pdf; 8613ISACA.CISA.v2021-11-29.q567; 36ISACA.Actualvce.CISA.v2021-08-31.by.ralap.101q.pdf

Latest Upload: 306ISACA.CGEIT.v2025-09-19.q537; 155Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 156Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 246Nutanix.NCP-US-6.5.v2025-09-16.q73; 266Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 326CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISA Exam Question 136

CISA Exam Question 137

CISA Exam Question 138

CISA Exam Question 139

CISA Exam Question 140

Download PDF File