Free Access ISACA.CISA.v2021-09-11.q201 Practice Test (Page 35)

Question 166

An IS auditor reviewing the system development life cycle (SDLC) finds there is no requirement for business cases. Which of the following should be of GREATEST concern to the organization?

A.Business resources have not been optimally assigned o

B.Project costs exceed established budgets

C.Vendor selection criteria are not sufficiently evaluated

D.Business impacts of projects are not adequately analyzed

Question 167

Which of the following presents the GREATEST concern when implementing data flow across borders?

A.Equipment incompatibilities

B.Political unrest

C.National privacy laws

D.Software piracy laws

Question 168

An IS auditor has completed an audit of an organization's accounts payable system. Which of the following should be rated as the HIGHEST risk in the audit report and requires immediate remediation?

A.Lack of segregation of duty controls for updating the vendor master file

B.Lack of segregation of duty controls for reconciliation of payment transactions

C.Lack of segregation of duty controls for removal of vendor records

D.Lack of segregation of duty controls for reversing payment transactions

Question 169

Which of the following will MOST likely compromise the control provided by a digital signature created using RSA encryption?

A.Reversing the hash function using the digest

B.Obtaining the sender's private key

C.Altering the plaintext message

D.Deciphering the receiver's public key

Question 170

An employee has accidentally posted confidential data to the company's social media page. Which of the following is the BEST control to prevent this from recurring?

A.Establish two-factor access control for social media accounts.

B.Implement a moderator approval process.

C.Require all updates to be made by the marketing director.

D.Perform periodic audits of social media updates.

Other Version: 4516ISACA.CISA.v2025-05-24.q773; 1564ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3714ISACA.CISA.v2023-03-29.q119; 2375ISACA.CISA.v2023-02-09.q181; 1484ISACA.CISA.v2023-02-06.q107; 3031ISACA.CISA.v2022-08-28.q129; 4194ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5588ISACA.CISA.v2021-11-11.q194; 8785ISACA.CISA.v2021-10-08.q198; 9762ISACA.CISA.v2021-09-28.q199

Latest Upload: 107Oracle.1Z0-1057-23.v2025-09-10.q47; 146Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 155TheSecOpsGroup.CNSP.v2025-09-08.q20; 204CFAInstitute.ESG-Investing.v2025-09-08.q173; 152PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 140Salesforce.Data-Architect.v2025-09-05.q216; 136Adobe.AD0-E605.v2025-09-05.q50; 176Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 166

Question 167

Question 168

Question 169

Question 170

Download PDF File