Free Access ISACA.CISA.v2024-10-22.q310 Practice Test (Page 26)

Question 121

While executing follow-up activities, an IS auditor is concerned that management has implemented corrective actions that are different from those originally discussed and agreed with the audit function. In order to resolve the situation, the IS auditor's BEST course of action would be to:

A.determine whether the alternative controls sufficiently mitigate the risk.

B.postpone follow-up activities and escalate the alternative controls to senior audit management.

C.schedule a follow-up audit in the next audit cycle.

D.re-prioritize the original issue as high risk and escalate to senior management.

Question 122

A third-party service provider has proposed a data loss prevention (DLP) solution. Which of the following
MUST be in place for this solution to be relevant to the organization?

A.An adequate data testing environment

B.Senior management support

C.A business case

D.A data classification

Question 123

What should an IS auditor do when informed that some recommendations cannot be implemented due to financial constraints?

A.Agree to waive the recommendations.

B.Suggest management identify cost-effective alternatives.

C.Document management's response in the working papers.

D.Insist the recommendations be implemented.

Question 124

The PRIMARY objective of service-level management (SLM) is to:

A.define, agree, record and manage the required levels of service.

B.ensure that services are managed to deliver the highest achievable level of availability.

C.keep the costs associated with any service at a minimum.

D.monitor and report any legal noncompliance to business management.

Question 125

Which of the following is MOST effective in detecting an intrusion attempt?

A.Installing biometrics-based authentication

B.Using smart cards with one-time passwords

C.Using packer finer software

D.Analyzing system logs

Other Version: 4572ISACA.CISA.v2025-05-24.q773; 4136ISACA.CISA.v2023-10-02.q715; 3740ISACA.CISA.v2023-03-29.q119; 2388ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3051ISACA.CISA.v2022-08-28.q129; 4218ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5623ISACA.CISA.v2021-11-11.q194; 8826ISACA.CISA.v2021-10-08.q198; 9799ISACA.CISA.v2021-09-28.q199; 12255ISACA.CISA.v2021-09-11.q201

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 172PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 145Adobe.AD0-E605.v2025-09-05.q50

Question 121

Question 122

Question 123

Question 124

Question 125

Download PDF File