Free Access ISACA.CISA.v2025-05-24.q773 Practice Test (Page 17)

Question 76

During the planning phase of a data loss prevention (DLP) audit, management expresses a concern about mobile computing. Which of the following should the IS auditor identify as the associated risk?

A.Increased need for user awareness training

B.The use of the cloud negatively impacting IT availability

C.Lack of governance and oversight for IT infrastructure and applications

D.Increased vulnerability due to anytime, anywhere accessibility

Question 77

Which of the following should an IS auditor consider the MOST significant risk associated with a new health records system that replaces a legacy system?

A.Data is not converted correctly, resulting in inaccurate patient records.

B.Staff were not involved in the procurement process, creating user resistance to the new system.

C.The new system has capacity issues, leading to slow response times for users.

D.The deployment project experienced significant overruns, exceeding budget projections.

Question 78

.Who is ultimately accountable for the development of an IS security policy?

A.The board of directors

B.Middle management

C.Security administrators

D.Network administrators

Question 79

Which of the following types of firewall treats each network frame or packet in isolation?

A.statefull firewall

B.hardware firewall

C.combination firewall

D.packet filtering firewall

E.stateless firewall

F.None of the choices.

Question 80

Which of the following should be of GREATEST concern to an IS auditor assessing an organization's patch management program?

A.There is no process in place to scan the network to identify missing patches.

B.Patches are deployed from multiple deployment servers.

C.There is no process in place to quarantine servers that have not been patched.

D.Patches for medium- and low-risk vulnerabilities are omitted.

Other Version: 1630ISACA.CISA.v2024-10-22.q310; 4136ISACA.CISA.v2023-10-02.q715; 3740ISACA.CISA.v2023-03-29.q119; 2391ISACA.CISA.v2023-02-09.q181; 1498ISACA.CISA.v2023-02-06.q107; 3051ISACA.CISA.v2022-08-28.q129; 4218ISACA.CISA.v2022-02-25.q148; 126ISACA.Actualtestpdf.CISA.v2021-11-13.by.sarah.721q.pdf; 5623ISACA.CISA.v2021-11-11.q194; 8826ISACA.CISA.v2021-10-08.q198; 9799ISACA.CISA.v2021-09-28.q199; 12255ISACA.CISA.v2021-09-11.q201

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 153Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 166TheSecOpsGroup.CNSP.v2025-09-08.q20; 226CFAInstitute.ESG-Investing.v2025-09-08.q173; 176PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 152Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 76

Question 77

Question 78

Question 79

Question 80

Download PDF File