Free Access ISACA.CISA.v2023-02-09.q181 Practice Test (Page 22)

Question 101

When reviewing an organization's information security policies, an IS auditor should verify that the policies have been defined PRIMARILY on the basis of:

A.industry best practices.

B.past information security incidents.

C.an information security framework.

D.a risk management process.

Question 102

Which of the following is the BEST way to address segregation of duties issues in an organization with budget constraints?

A.Perform an independent audit.

B.Rotate job duties periodically.

C.Hire temporary staff.

D.Implement compensating controls.

Question 103

Which of the following is the MOST efficient way to identify segregation of duties violations in a new system?

A.Review a report of security rights in the system.

B.Observe the performance of business processes.

C.Examine recent system access rights violations.

D.Develop a process to identify authorization conflicts.

Question 104

Management has requested a post-implementation review of a newly implemented purchasing package to determine to what extent business requirements are being met. Which of the following is MOST likely to be assessed?

A.Results of line processing

B.Test results

C.Purchasing guidelines and policies

D.Implementation methodology

Question 105

Which of the following is the BEST source of information for an IS auditor to use as a baseline to assess the adequacy of an organization's privacy policy?

A.Local privacy standards and regulations

B.Globally accepted privacy best practices

C.Historical privacy breaches and related root causes

D.Benchmark studies of similar organizations

Other Version: 4562ISACA.CISA.v2025-05-24.q773; 1609ISACA.CISA.v2024-10-22.q310; 4136ISACA.CISA.v2023-10-02.q715; 3738ISACA.CISA.v2023-03-29.q119; 1498ISACA.CISA.v2023-02-06.q107; 3051ISACA.CISA.v2022-08-28.q129; 4218ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5623ISACA.CISA.v2021-11-11.q194; 8818ISACA.CISA.v2021-10-08.q198; 9793ISACA.CISA.v2021-09-28.q199; 12254ISACA.CISA.v2021-09-11.q201

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 150Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50

Question 101

Question 102

Question 103

Question 104

Question 105

Download PDF File