Free Access ISACA.CISA.v2022-02-25.q148 Practice Test (Page 8)

Question 31

After an external IS audit, which of the following should be IT management's MAIN consideration when determining the prioritization of follow-up activities?

A.The amount of time since the initial audit was completed.

B.The materiality of the reported findings

C.The availability of the external auditors

D.The scheduling of major changes in the control environment

Question 32

An IS auditor performing a review of a newly purchased software program notes that an escrow agreement has been executed for acquiring the source code. What is MOST important for the IS auditor to verify?

A.The source code is being updated for each change.

B.Product acceptance testing has been completed.

C.The vendor is financially viable.

D.The source code is being held by an independent third party.

Question 33

Which of the following should be of MOST concern to an IS auditor reviewing the BCP?

A.The disaster levels are based on scopes of damaged functions, but not on duration.

B.The difference between low-level disaster and software incidents is not clear.

C.The overall BCP is documented, but detailed recovery steps are not specified.

D.The responsibility for declaring a disaster is not identified.

Question 34

Which of the following is the MOST important consideration when developing an incident response program?

A.Number of dedicated response staff

B.Technical skills of response staff

C.Senior management support

D.Incident response procedures

Question 35

Distributed denial-of-service (DDOS) attacks on Internet sites are typically evoked by hackers using which of the following?

A.Logic bombs

B.Phishing

C.Spyware

D.Trojan horses

Other Version: 4516ISACA.CISA.v2025-05-24.q773; 1564ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3713ISACA.CISA.v2023-03-29.q119; 2373ISACA.CISA.v2023-02-09.q181; 1484ISACA.CISA.v2023-02-06.q107; 3030ISACA.CISA.v2022-08-28.q129; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5588ISACA.CISA.v2021-11-11.q194; 8785ISACA.CISA.v2021-10-08.q198; 9762ISACA.CISA.v2021-09-28.q199; 12215ISACA.CISA.v2021-09-11.q201

Latest Upload: 107Oracle.1Z0-1057-23.v2025-09-10.q47; 146Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 155TheSecOpsGroup.CNSP.v2025-09-08.q20; 204CFAInstitute.ESG-Investing.v2025-09-08.q173; 152PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 140Salesforce.Data-Architect.v2025-09-05.q216; 136Adobe.AD0-E605.v2025-09-05.q50; 176Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 31

Question 32

Question 33

Question 34

Question 35

Download PDF File