Free Access ISACA.CISA.v2023-02-09.q181 Practice Test (Page 33)

Question 156

Management is concerned about sensitive information being intentionally or unintentionally emailed as attachments outside the organization by employees. What is the MOST important task before implementing any associated email controls?

A.Require all employees to sign nondisclosure agreements (NDAs).

B.Develop an acceptable use policy for end-user computing (EUC).

C.Provide notification to employees about possible email monitoring.

D.Develop an information classification scheme.

Question 157

In a 24/7 processing environment, a database contains several privileged application accounts with passwords set to never expire. Which of the following recommendations would BEST address the risk with minimal disruption to the business?

A.Modify applications to no longer require direct access to the database.

B.Modify the access management policy to make allowances for application accounts.

C.Schedule downtime to implement password changes.

D.Introduce database access monitoring into the environment

Question 158

Which of the following BEST guards against the risk of attack by hackers?

A.Tunneling

B.Firewalls

C.Encryption

D.Message validation

Question 159

A manager Identifies active privileged accounts belonging to staff who have left the organization. Which of the following is the threat actor In this scenario?

A.Terminated staff

B.Deleted log data

C.Hacktivists

D.Unauthorized access

Question 160

When evaluating the design of controls related to network monitoring, which of the following is MOST important for an IS auditor to review?

A.The ISP service level agreement

B.Incident monitoring togs

C.Network topology diagrams

D.Reports of network traffic analysis

Other Version: 4590ISACA.CISA.v2025-05-24.q773; 1634ISACA.CISA.v2024-10-22.q310; 4136ISACA.CISA.v2023-10-02.q715; 3740ISACA.CISA.v2023-03-29.q119; 1498ISACA.CISA.v2023-02-06.q107; 3051ISACA.CISA.v2022-08-28.q129; 4218ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5623ISACA.CISA.v2021-11-11.q194; 8827ISACA.CISA.v2021-10-08.q198; 9799ISACA.CISA.v2021-09-28.q199; 12255ISACA.CISA.v2021-09-11.q201

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 119Oracle.1Z0-1057-23.v2025-09-10.q47; 153Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 166TheSecOpsGroup.CNSP.v2025-09-08.q20; 229CFAInstitute.ESG-Investing.v2025-09-08.q173; 176PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 152Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 156

Question 157

Question 158

Question 159

Question 160

Download PDF File