Online Access Free ISACA.CISA.v2025-06-20.q647 Practice Test (Page 21)

CISA Exam Question 96

During which phase of the software development life cycle should an IS auditor be consulted to recommend security controls?

A.Design and development

B.Final acceptance testing

C.Implementation of software

D.Requirements definition

CISA Exam Question 97

The BEST way for an IS auditor to validate that separation of duties has been implemented is to perform:

A.A review of personnel files.

B.An analysis of documented job descriptions.

C.A review of the organizational chart.

D.A walk-through of job functions.

CISA Exam Question 98

An IS auditor is reviewing an artificial intelligence (Al) and expert system application. The system has produced several critical errors with severe impact. Which of the following should the IS auditor do NEXT to understand the cause of the errors?

A.Interview the system owner.

B.Verify system adherence to corporate policy.

C.Understand the purpose and functionality of the system.

D.Review the decision-making logic built into the system.

CISA Exam Question 99

Which of the following would be MOST important to include in an IS audit report?

A.Specific technology solutions for each audit observation

B.Observations not reported as findings due to inadequate evidence

C.The roadmap for addressing the various risk areas

D.The level of unmitigated risk along with business impact

CISA Exam Question 100

During an IS audit of a data center, it was found that programmers are allowed to make emergency fixes to operational programs. Which of the following should be the IS auditor's PRIMARY recommendation?

A.Bypass user ID procedures should be put in place to ensure that the changes are subject to after-the- event approval and testing.

B.Programmers should be allowed to implement emergency fixes only after obtaining verbal agreement from the application owner.

C.Emergency program changes should be subject to program migration and testing procedures before they are applied to operational systems.

Other Version: 1794ISACA.CISA.v2025-06-11.q606; 2243ISACA.CISA.v2023-03-04.q272; 2344ISACA.CISA.v2022-10-31.q203; 2449ISACA.CISA.v2022-03-29.q126; 123ISACA.Examprepaway.CISA.v2022-02-10.by.barret.126q.pdf; 8596ISACA.CISA.v2021-11-29.q567; 36ISACA.Actualvce.CISA.v2021-08-31.by.ralap.101q.pdf

Latest Upload: 273ISACA.CGEIT.v2025-09-19.q537; 153Fortinet.FCP_FWF_AD-7.4.v2025-09-18.q62; 154Scrum.SAFe-Practitioner.v2025-09-18.q63; 146Workday.Workday-Prism-Analytics.v2025-09-17.q17; 131Oracle.1Z0-1055-24.v2025-09-17.q28; 129Oracle.1Z1-182.v2025-09-17.q32; 243Nutanix.NCP-US-6.5.v2025-09-16.q73; 265Oracle.1z0-071.v2025-09-16.q232; 203Oracle.1Z1-922.v2025-09-16.q125; 325CyberArk.PAM-CDE-RECERT.v2025-09-15.q100

CISA Exam Question 96

CISA Exam Question 97

CISA Exam Question 98

CISA Exam Question 99

CISA Exam Question 100

Download PDF File