Free Access ISACA.CISA.v2021-09-28.q199 Practice Test (Page 13)

Question 56

Which of the following is the BEST way to reduce sampling risk?

A.Assign experienced auditors to the sampling process.

B.Align the sampling approach with the one used by external auditors

C.Plan the audit in accordance with generally accepted auditing principles

D.Ensure each item has an equal chance to be selected

Question 57

Which of the following should be the PRIMARY consideration for IT management when selecting a new information security tool that monitors suspicious file access patterns?

A.Data correlation and visualization capabilities

B.Ease of support and troubleshooting

C.Ability to contribute to key performance indicator data

D.Integration with existing architecture

Question 58

A company uses a standard form to document and approve all changes in production programs. To ensure that the forms are properly authorized, which of the following is the MOST effective sampling method?

A.Variable

B.Stratified

C.Attribute

D.Random

Question 59

Which of the following is the PRIMARY purpose of quality assurance (QA) within an IS audit department?

A.To enforce audit policies and identify any deviations

B.To regularly assess and improve audit methodology

C.To ensure conclusions are reliable and no false assurance is given

D.To confirm audit practice is aligned with industry standards and benchmarks

Question 60

Which of the following observations would an IS auditor consider the GREATEST risk when conducting an audit of a virtual server farm for potential software vulnerabilities?

A.Antivirus software has been implemented on the guest operating system only.

B.A variety of guest operating systems operate on one virtual server.

C.The hypervisor is updated quarterly.

D.Guest operating systems are updated monthly

Other Version: 4530ISACA.CISA.v2025-05-24.q773; 1586ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3724ISACA.CISA.v2023-03-29.q119; 2379ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3050ISACA.CISA.v2022-08-28.q129; 4213ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5614ISACA.CISA.v2021-11-11.q194; 8796ISACA.CISA.v2021-10-08.q198; 12244ISACA.CISA.v2021-09-11.q201

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 156PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 146Salesforce.Data-Architect.v2025-09-05.q216; 139Adobe.AD0-E605.v2025-09-05.q50

Question 56

Question 57

Question 58

Question 59

Question 60

Download PDF File