Free Access ISACA.CISA.v2021-09-11.q201 Practice Test (Page 21)

Question 96

An organization issues digital certificates to employees to enable connectivity to a web-based application.
Which of the following public key infrastructure (PKI) components MUST be included in the application architecture for determining the on-going validity of connections?

A.Certificate authority (CA)

B.Certificate revocation list (CRL)

C.Registration authority (RA)

D.Secure hash algorithm (SHA)

Question 97

An IS auditor is reviewing security policies and finds no mention of the return of corporate-owned smartphones upon termination of employment. The GREATEST risk arising from this situation is that unreturned devices:

A.generate excessive telecommunication costs.

B.result in loss of customer contact details

C.have access to corporate resources

D.cause the asset inventory to be inaccurate.

Question 98

During a disaster recovery audit, an IS auditor finds that a business impact analysis (BIA) has not been performed The auditor should FIRST.

A.conduct additional compliance testing

B.evaluate the impact on current disaster recovery capability.

C.issue an intermediate report to management

D.perform business impact analysis

Question 99

A database audit reveals an issue with the way data ownership for client data is defined. Which of the following roles should be accountable for this finding?

A.Information security management

B.Privacy manager

C.Business management

D.Database administrator

Question 100

Which of the following is MOST important for an IS auditor to verify when reviewing a critical business application that requires high availability?

A.Algorithms are reviewed to resolve process ineffictencies.

B.There is no single point of failure.

C.Service level agreements (SlAs) are monitored.

D.Users participate in offsite business continuity testing.

Other Version: 4551ISACA.CISA.v2025-05-24.q773; 1600ISACA.CISA.v2024-10-22.q310; 4136ISACA.CISA.v2023-10-02.q715; 3737ISACA.CISA.v2023-03-29.q119; 2386ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3051ISACA.CISA.v2022-08-28.q129; 4218ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5623ISACA.CISA.v2021-11-11.q194; 8809ISACA.CISA.v2021-10-08.q198; 9787ISACA.CISA.v2021-09-28.q199

Latest Upload: 104OCEG.GRCP.v2025-09-11.q211; 103HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 147Salesforce.Data-Architect.v2025-09-05.q216; 142Adobe.AD0-E605.v2025-09-05.q50

Question 96

Question 97

Question 98

Question 99

Question 100

Download PDF File