Free Access ISACA.CISA.v2021-09-11.q201 Practice Test (Page 19)

Question 86

During an audit of a financial application, it was determined thai many terminated users' accounts were not disabled. Which of the following should be the IS auditors NEXT step?

A.Perform substantive testing of terminated users' access rights.

B.Communicate risks to the application owner.

C.Conclude that IT general controls are ineffective.

D.Perform a review of terminated users' account activity.

Question 87

An IS auditor identifies key controls that have been overridden by management. The next step the IS auditor should take is to

A.Report the absence of key controls to regulators

B.Withdraw from the engagement

C.Perform procedures to quantify the irregularities

D.Recommend compensating controls

Question 88

Which of the following observations should be of GREATEST concern to an IS auditor reviewing a hosted virtualized environment where each guest operating system (OS) is r

A.All virtual machines are launching an application backup job at the same time

B.Access to virtualization utilities and tools in the host is not restricted

C.The test environment of the applications is in a separate guest OS

D.There are file shares between the host OS and the guest OS

Question 89

To ensure efficient and economic use of limited resources in supporting a local area network (LAN) infrastructure, it is advisable to:

A.periodically rotate vendors to obtain the best price-to-performance ratio

B.quickly upgrade to the latest hardware and software versions to take advantage of new features

C.standardize on a limited number of device models and software applications.

D.recommend a variety of products so that user effectiveness and flexibility can be maximized.

Question 90

In an organization that has a staff-rotation policy, the MOST appropriate access control model is:

A.mandatory.

B.discretionary.

C.lattice-based.

D.role-based.

Other Version: 4551ISACA.CISA.v2025-05-24.q773; 1600ISACA.CISA.v2024-10-22.q310; 4136ISACA.CISA.v2023-10-02.q715; 3737ISACA.CISA.v2023-03-29.q119; 2386ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3051ISACA.CISA.v2022-08-28.q129; 4218ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5623ISACA.CISA.v2021-11-11.q194; 8809ISACA.CISA.v2021-10-08.q198; 9787ISACA.CISA.v2021-09-28.q199

Latest Upload: 104OCEG.GRCP.v2025-09-11.q211; 103HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 147Salesforce.Data-Architect.v2025-09-05.q216; 142Adobe.AD0-E605.v2025-09-05.q50

Question 86

Question 87

Question 88

Question 89

Question 90

Download PDF File