Free Access ISACA.CISA.v2023-03-29.q119 Practice Test (Page 13)

Question 56

When an intrusion into an organization network is deleted, which of the following should be done FIRST?

A.Identity nodes that have been compromised.

B.Contact law enforcement.

C.Block all compromised network nodes.

D.Notify senior management.

Question 57

Which of the following is the BEST way to ensure that business continuity plans (BCPs) will work effectively in the event of a major disaster?

A.Regularly update business impact assessments.

B.Involve staff at all levels in periodic paper walk-through exercises.

C.Make senior managers responsible for their plan sections.

D.Prepare detailed plans for each business function.

Question 58

A project team has decided to switch to an agile approach to develop a replacement for an existing business application. Which of the following should an IS auditor do FIRST to ensure the effectiveness of the protect audit?

A.Identify and assess existing agile process control

B.Interview business process owners to compile a list of business requirements

C.Understand the specific agile methodology that will be followed.

D.Compare the agile process with previous methodology.

Question 59

Which of the following findings should be of GREATEST concern for an IS auditor when auditing the effectiveness of a phishing simulation test administered for staff members?

A.Staff members were not notified about the test beforehand.

B.Security awareness training was not provided prior to the test.

C.Staff members who failed the test did not receive follow-up education

D.Test results were not communicated to staff members.

Question 60

An IS auditor finds that the process for removing access for terminated employees is not documented What is the MOST significant risk from this observation?

A.Procedures may not align with best practices

B.Unauthorized access cannot he identified.

C.Access rights may not be removed in a timely manner.

D.Human resources (HR) records may not match system access.

Other Version: 4531ISACA.CISA.v2025-05-24.q773; 1589ISACA.CISA.v2024-10-22.q310; 4135ISACA.CISA.v2023-10-02.q715; 2383ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3050ISACA.CISA.v2022-08-28.q129; 4213ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5620ISACA.CISA.v2021-11-11.q194; 8796ISACA.CISA.v2021-10-08.q198; 9785ISACA.CISA.v2021-09-28.q199; 12245ISACA.CISA.v2021-09-11.q201

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 147Salesforce.Data-Architect.v2025-09-05.q216; 141Adobe.AD0-E605.v2025-09-05.q50

Question 56

Question 57

Question 58

Question 59

Question 60

Download PDF File