Free Access ISACA.CISA.v2022-08-28.q129 Practice Test (Page 7)

Question 26

Which of the following falls within the scope of an information security governance committee?

A.Selecting the organization's external security auditors

B.Prioritizing information security technology initiatives

C.Reviewing content for information security awareness programs

D.Approving access to critical financial systems

Question 27

An appropriate control for ensuring the authenticity of orders received in an EDI application is to:

A.acknowledge receipt of electronic orders with a confirmation message.

B.perform reasonableness checks on quantities ordered before filling orders.

C.verify the identity of senders and determine if orders correspond to contract terms.

D.encrypt electronic orders.

Question 28

During an implementation review of a multiuser distributed application, an IS auditor finds minor weaknesses in three areas-the initial setting of parameters is improperly installed, weak passwords are being used and some vital reports are not beingchecked properly. While preparing the audit report, the IS auditor should:

A.record the observations separately with the impact of each of them marked against each respective finding.

B.advise the manager of probable risks without recording the observations, as the control weaknesses are minor ones.

C.record the observations and the risk arising from the collective weaknesses.

D.apprise the departmental heads concerned with each observation and properly document it in the report.

Question 29

The FIRST step in establishing a firewall security policy is to determine the:

A.necessary logical access rights.

B.expected data throughput.

C.business requirements.

D.existing firewall configuration.

Question 30

Which of the following provides the evidence that network filters are functioning?
D18912E1457D5D1DDCBD40AB3BF70D5D

A.Analyzing network performance

B.Reviewing network configuration rules

C.Reviewing network filtering policy

D.Performing network port scans

Other Version: 4516ISACA.CISA.v2025-05-24.q773; 1565ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3714ISACA.CISA.v2023-03-29.q119; 2375ISACA.CISA.v2023-02-09.q181; 1485ISACA.CISA.v2023-02-06.q107; 4197ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5603ISACA.CISA.v2021-11-11.q194; 8785ISACA.CISA.v2021-10-08.q198; 9763ISACA.CISA.v2021-09-28.q199; 12227ISACA.CISA.v2021-09-11.q201

Latest Upload: 107Oracle.1Z0-1057-23.v2025-09-10.q47; 146Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 155TheSecOpsGroup.CNSP.v2025-09-08.q20; 204CFAInstitute.ESG-Investing.v2025-09-08.q173; 152PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 140Salesforce.Data-Architect.v2025-09-05.q216; 136Adobe.AD0-E605.v2025-09-05.q50; 176Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 26

Question 27

Question 28

Question 29

Question 30

Download PDF File