Free Access ISACA.CISA.v2023-02-09.q181 Practice Test (Page 16)

Question 71

An IS auditor finds that an organization's data loss prevention (DLP) system is configured to use vendor default settings to identify violations. The auditor's MAIN concern should be that:

A.violations may not be categorized according to the organization's risk profile.

B.a significant number of false positive violations may be reported.

C.violation reports may not be retained according to the organization's risk profile.

D.violation reports may not be reviewed in a timely manner.

Question 72

Which of the following is MOST helpful to an IS auditor when assessing the effectiveness of controls?

A.A control self-assessment (CSA)

B.Results of control testing

C.Interviews with management

D.A control matrix

Question 73

The IS auditor has recommended that management test a new system before using it in production mode. The BEST approach for management in developing a test plan is to use processing parameters that are:

A.provided by the vendor of the application.

B.simulated by production entities and customers.

C.randomly selected by a test generator.

D.randomly selected by the user.

Question 74

in a controlled application development environment the MOST important segregation of duties should be between the person who implements changes into the production environment and the:

A.application programmer

B.systems programmer

C.computer operator

D.quality assurance (QA) personnel

Question 75

IT disaster recovery time objectives (RTOs) should be based on the:

A.business-defined criticality of the systems.

B.maximum tolerable loss of data.

C.maximum tolerable downtime (MTD).

D.nature of the outage

Other Version: 4531ISACA.CISA.v2025-05-24.q773; 1589ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3724ISACA.CISA.v2023-03-29.q119; 1498ISACA.CISA.v2023-02-06.q107; 3050ISACA.CISA.v2022-08-28.q129; 4213ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5616ISACA.CISA.v2021-11-11.q194; 8796ISACA.CISA.v2021-10-08.q198; 9784ISACA.CISA.v2021-09-28.q199; 12245ISACA.CISA.v2021-09-11.q201

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 156PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 146Salesforce.Data-Architect.v2025-09-05.q216; 140Adobe.AD0-E605.v2025-09-05.q50

Question 71

Question 72

Question 73

Question 74

Question 75

Download PDF File