Free Access ISACA.CISA.v2021-11-11.q194 Practice Test (Page 19)

Question 86

Which of the following should an IS auditor validate FIRST when reviewing the security of an organization's IT infrastructure as it relates to Internet of Things (loT) devices?

A.Physical security of loT devices

B.Strong password protection for loT devices

C.Access control and network segmentation for loT devices

D.Identification and inventory of loT devices

Question 87

An organization has outsourced its data leakage monitoring to an Internet service provider (ISP). Which of the following is the BEST way for an IS auditor to determine the effectiveness of this service?

A.Review the ISP's external audit report

B.verify the ISP has staff to deal with data leakage.

C.Simulate a data leakage incident.

D.Review the data leakage clause in the SLA.

Question 88

Which of the following is the BEST approach to identify whether a vulnerability is actively being exploited?

A.Implement key performance indicators (KPIs).

B.Conduct a penetration test

C.Review service desk reports.

D.Perform log analysis.

Question 89

Which of the following is an objective of data transfer controls?

A.To ensure there are sufficient dedicated resources in place to facilitate data transfer

B.To ensure the data is backed up on a regular basis

C.To ensure access control lists are accurately and completely maintained

D.To ensure receiving data fields have been configured according to the structure of the transmitted data

Question 90

During an audit of an access control system an IS auditor finds that RFID card readers are not connected via the network to a central server Which of the following is the GREATEST risk associated with this finding?

A.Card reader firmware updates cannot be rolled out automatically.

B.Lost or stolen cards cannot be disabled immediately.

C.Incidents cannot be investigated without a centralized log file

D.The system is not easily scalable to accommodate a new device

Premium Bundle

Newest CISA Exam PDF Dumps shared by BraindumpsPass.com for Helping Passing CISA Exam! BraindumpsPass.com now offer the updated CISA exam dumps, the BraindumpsPass.com CISA exam questions have been updated and answers have been corrected get the latest BraindumpsPass.com CISA pdf dumps with Exam Engine here:

Access CISA Premium Version

(1435 Q&As Dumps, 40%OFF Special Discount: Exam-Tests)

Other Version: 4531ISACA.CISA.v2025-05-24.q773; 1589ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3733ISACA.CISA.v2023-03-29.q119; 2383ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3050ISACA.CISA.v2022-08-28.q129; 4213ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 8796ISACA.CISA.v2021-10-08.q198; 9785ISACA.CISA.v2021-09-28.q199; 12245ISACA.CISA.v2021-09-11.q201

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 147Salesforce.Data-Architect.v2025-09-05.q216; 141Adobe.AD0-E605.v2025-09-05.q50