Home > IT (Information Technology) For Managers > Quizzes > CISA: Certified Information Systems Auditor
CISA: Certified Information Systems Auditor
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 82% Most missed: “Focuses on:”
CISA: Certified Information Systems Auditor
Time left 00:00
25 Questions

1. Individual events may often create combined threats to enterprise operations: A tornado might also spawn ____________________.

2. An IS auditor is examining the IT standards document for an organization that was last reviewed two years earlier. The best course of action for the IS auditor is: Report that the ____________________________. Two years is far too long between revie

3. (1.) Access Control (2.) Change Management (3.) Security Controls (4.) Incident Management (5.) SDLC (6.) Source code and versioning controls (7.) Monitoring and logging (8.) Event Management

4. Gantt: used to display ______________.

5. The purpose of an auditor doing interviews - To observe personnel to better understand their discipline - as well as ______________.

6. The delivery of messages from one station to another via one or more networks.. Routes packets between networks.

7. The inventory of all in-scope business processes and systems

8. IT Governance is most concerned with ________.

9. Disasters are generally grouped in terms of type: ______________.

10. The set of activities that is concerned with the ability of the organization to continue to provide services - primarily in the event that a natural or man made disaster has occurred.

11. An organization has discovered that some of its employees have criminal records. The best course of action for the organization to take - The organization should have ___________________ on all of its existing employees and also begin instituting bac

12. Defines internal controls and provides guidance for assessing and improving internal control systems.

13. Focuses on: post-event recovery and restoration of services

14. Used to estimate the effort required to develop a software program.

15. (1.) Financial (2.) Customer (3.) Internal processes (4.) Innovation / Learning

16. n audit strategy and plans that include: (1.) Scope (2.) Objectives (3.) Resources (4.) Procedures used to evaluation controls and processes

17. Consists of two main packet transport protocols: TCP and UDP.

18. To measure organizational performance and effectiveness against strategic goals.

19. The risk that there are material weaknesses in existing business processes and no compensating controls to detect or prevent them

20. An active - instance of a server operating system running on a machine that is designed to house two or more such virtual servers.

21. IS auditors can _____________________ through the following means: (1.) training courses (2.) webinars (3.) ISACA chapter training events (4.) Industry conferences

22. An auditor has reviewed access privileges of some employees and has discovered that employees with longer terms of service have excessive privileges. This means User privileges are not being removed from their old position when they transfer to a new

23. What type of testing is performed to verify the accuracy and integrity of transactions as they flow through a system?

24. (1.) Observations (2.) Written Notes (3.) Correspondence (4.) Process and Procedure documentation (5.) Business records

25. A sampling technique used to study the characteristics of a population to determine the numeric total of a specific attribute from the entire population.