Free Access ISACA.CISA.v2023-02-06.q107 Practice Test (Page 9)

Question 36

Which of the following will be the MOST effective method to verify that a service vendor keeps control levels as required by the client?

A.Periodically review the service level agreement (SLA) with the vendor.

B.Conduct an unannounced vulnerability assessment of vendor's IT systems.

C.Conduct periodic on-site assessments using agreed-upon criteria.

D.Obtain evidence of the vendor's control self-assessment (CSA).

Question 37

Which of the following is the BEST justification for deferring remediation testing until the next audit?

A.Management's planned actions are sufficient given the relative importance of the observations.

B.The audit environment has changed significantly.

C.Auditee management has accepted all observations reported by the auditor.

D.The auditor who conducted the audit and agreed with the timeline has left the organization.

Question 38

Which of the following tests would provide the BEST assurance that a health care organization is handling patient data appropriately?

A.Compliance with the organization's policies and procedures

B.Compliance with industry standards and best practice

C.Compliance with action plans resulting from recent audits

D.Compliance with local laws and regulations

Question 39

While executing follow-up activities, an IS auditor is concerned that management has implemented corrective actions that are different from those originally discussed and agreed with the audit function. In order to resolve the situation, the IS auditor's BEST course of action would be to:

A.schedule a follow-up audit in the next audit cycle.

B.determine whether the alternative controls sufficiently mitigate the risk.

C.postpone follow-up activities and escalate the alternative controls to senior audit management.

D.re-prioritize the original issue as high risk and escalate to senior management.

Question 40

IS management has recently disabled certain referential integrity controls in the database management system (DBMS) software to provide users increased query performance. Which of the following controls will MOST effectively compensate for the lack of referential integrity?

A.Performance monitoring tools

B.More frequent data backups

C.Periodic table link checks

D.Concurrent access controls

Other Version: 4515ISACA.CISA.v2025-05-24.q773; 1564ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3713ISACA.CISA.v2023-03-29.q119; 2369ISACA.CISA.v2023-02-09.q181; 3024ISACA.CISA.v2022-08-28.q129; 4187ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5584ISACA.CISA.v2021-11-11.q194; 8785ISACA.CISA.v2021-10-08.q198; 9762ISACA.CISA.v2021-09-28.q199; 12213ISACA.CISA.v2021-09-11.q201

Latest Upload: 106Oracle.1Z0-1057-23.v2025-09-10.q47; 146Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 148TheSecOpsGroup.CNSP.v2025-09-08.q20; 200CFAInstitute.ESG-Investing.v2025-09-08.q173; 150PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 139Salesforce.Data-Architect.v2025-09-05.q216; 135Adobe.AD0-E605.v2025-09-05.q50; 173Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 36

Question 37

Question 38

Question 39

Question 40

Download PDF File