Free Access ISACA.CISA.v2023-02-09.q181 Practice Test (Page 7)

Question 26

When planning an audit to assess application controls of a cloud-based system, it is MOST important tor the IS auditor to understand the.

A.architecture and cloud environment of the system.

B.policies and procedures of the business area being audited.

C.availability reports associated with the cloud-based system.

D.business process supported by the system.

Question 27

Which of the following is an executive management concern that could be addressed by the implementation of a security metrics dashboard?

A.Total number of hours budgeted to security

B.Security incidents vs. industry benchmarks

C.Effectiveness of the security program

D.Total number of false positives

Question 28

A new regulation in one country of a global organization has recently prohibited cross-border transfer of personal dat a. An IS auditor has been asked to determine the organization's level of exposure In the affected country. Which of the following would be MOST helpful in making this assessment?

A.Identifying business processes associated with personal data exchange with the affected jurisdiction

B.Developing an inventory of all business entities that exchange personal data with the affected jurisdiction

C.Reviewing data classification procedures associated with the affected jurisdiction

D.Identifying data security threats in the affected jurisdiction

Question 29

Which of the following concerns is BEST addressed by securing production source libraries?

A.Unauthorized changes can be moved into production.

B.Production source and object libraries may not be synchronized.

C.Programs are not approved before production source libraries are updated.

D.Changes are applied to the wrong version of production source libraries.

Question 30

Which of the following should an IS auditor consider the MOST significant risk associated with a new health records system that replaces a legacy system?

A.The new system has capacity issues, leading to slow response times for users.

B.Staff were not involved in the procurement process, creating user resistance to the new system.

C.The deployment project experienced significant overruns, exceeding budget projections.

D.Data is not converted correctly, resulting in inaccurate patient records.

Other Version: 4515ISACA.CISA.v2025-05-24.q773; 1564ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 3713ISACA.CISA.v2023-03-29.q119; 1474ISACA.CISA.v2023-02-06.q107; 3024ISACA.CISA.v2022-08-28.q129; 4187ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5584ISACA.CISA.v2021-11-11.q194; 8785ISACA.CISA.v2021-10-08.q198; 9762ISACA.CISA.v2021-09-28.q199; 12213ISACA.CISA.v2021-09-11.q201

Latest Upload: 106Oracle.1Z0-1057-23.v2025-09-10.q47; 146Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 148TheSecOpsGroup.CNSP.v2025-09-08.q20; 200CFAInstitute.ESG-Investing.v2025-09-08.q173; 150PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 139Salesforce.Data-Architect.v2025-09-05.q216; 135Adobe.AD0-E605.v2025-09-05.q50; 173Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 26

Question 27

Question 28

Question 29

Question 30

Download PDF File