Free Access ISACA.CISA.v2021-11-11.q194 Practice Test (Page 25)

Question 116

When deciding whether a third party can be used in resolving a suspected security breach, which of the following should be the MOST important consideration for IT management?

A.Audit approval

B.Incident priority rating

C.Data sensitivity

D.Third-party cost

Question 117

An IS auditor intends to accept a management position in the data processing department within the same organization. However, the auditor is currently working on an audit of a major application and has not yet finished the report. Which of the following would be the BEST step tor the IS auditor to take?

A.Disclose this issue to the appropriate parties.

B.Start in the position and inform the application owner of the job change.

C.Start in the position immediately.

D.Complete the audit without disclosure and then start in the position.

Question 118

Which of the following should an IS auditor expect to see in a network vulnerability assessment?

A.Misconfiguration and missing updates

B.Security design flaws

C.Malicious software and spyware

D.Zero-day vulnerabilities

Question 119

Which of the following poses the GREATEST risk to a company that allows employees to use personally owned devices to access customer files on the company's network?

A.Customer data may be compromised if the device is lost or stolen.

B.The company's network might slow down, affecting response time.

C.The help desk might not be able to support all different types of personal devices.

D.Employee productivity may suffer due to personal distractions

Question 120

An organization seeks to control costs related to storage media throughout the information life cycle while still meeting business and regulatory requirements. Which of the following is the BEST way to achieve this objective?

A.Implement a data retention policy.

B.Perform periodic tape backups.

C.Utilize solid state memory.

D.Stream backups to the cloud.

Other Version: 4531ISACA.CISA.v2025-05-24.q773; 1589ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3724ISACA.CISA.v2023-03-29.q119; 2383ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3050ISACA.CISA.v2022-08-28.q129; 4213ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 8796ISACA.CISA.v2021-10-08.q198; 9784ISACA.CISA.v2021-09-28.q199; 12245ISACA.CISA.v2021-09-11.q201

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 146Salesforce.Data-Architect.v2025-09-05.q216; 140Adobe.AD0-E605.v2025-09-05.q50

Question 116

Question 117

Question 118

Question 119

Question 120

Download PDF File