Free Access ISACA.CISA.v2021-10-08.q198 Practice Test (Page 3)

Question 6

Which of the following is MOST important to include in a contract to outsource data processing that involves customer personally identifiable information (Pit)?

A.The vendor must compensate the organization if nonperformance occurs.

B.The vendor must provide an independent report of its data processing facilities.

C.The vendor must comply with the organization is legal and regulatory requirement.

D.The vendor must sign a nondisclosure agreement with the organization.

Question 7

A data center's physical access log system captures each visitor's identification document numbers along with the visitor's photo. Which of the following sampling methods would be MOST useful to an IS auditor conducting compliance testing for the effectiveness of the system?

A.Quota sampling

B.Haphazard sampling

C.Attribute sampling

D.Variable sampling

Question 8

A warehouse employee of a retail company has been able to conceal the theft of inventory items by entering adjustments of either damaged or lost stock items to the inventory system Which control would have BEST prevented this type of fraud in a retail environment?

A.Separate authorization for input of transactions

B.Unscheduled audits of lost stock lines

C.An edit check for the validity of the inventory transaction

D.Statistical sampling of adjustment transactions

Question 9

An IS auditor noted that a change to a critical calculation was placed into the production environment without being tested. Which of the following is the BEST way to obtain assurance that the calculation functions correctly?

A.Interview the lead system developer.

B.Check regular execution of the calculation batch job.

C.Obtain post-change approval from management.

D.Perform substantive testing using computer-assisted audit techniques (CAATs).

Question 10

Which of the following is an IS auditor s GREATEST concern when an organization does not regularly update software on individual workstations in the internal environment?

A.The organization may be more susceptible to cyber-attacks.

B.System functionality may not meet business requirements.

C.The system may have version control issues.

D.The organization may not be in compliance with licensing agreement.

Other Version: 4519ISACA.CISA.v2025-05-24.q773; 1576ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3724ISACA.CISA.v2023-03-29.q119; 2379ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3050ISACA.CISA.v2022-08-28.q129; 4210ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5614ISACA.CISA.v2021-11-11.q194; 9772ISACA.CISA.v2021-09-28.q199; 12240ISACA.CISA.v2021-09-11.q201

Latest Upload: 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 156TheSecOpsGroup.CNSP.v2025-09-08.q20; 208CFAInstitute.ESG-Investing.v2025-09-08.q173; 155PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 145Salesforce.Data-Architect.v2025-09-05.q216; 139Adobe.AD0-E605.v2025-09-05.q50; 183Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 6

Question 7

Question 8

Question 9

Question 10

Download PDF File