Home > IT (Information Technology) For Managers > Quizzes > CISA Certified Information Systems Auditor Vocab
CISA Certified Information Systems Auditor Vocab
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 32% Most missed: “An evaluation of any part of an implementation project (e.g.; project management…”
CISA Certified Information Systems Auditor Vocab
Time left 00:00
25 Questions

1. A program designed to detect computer viruses

2. An approach used to plan; design; develop; test and implement an application system or a major modification to an application system. Typical phases include the feasibility study; requirements study; requirements definition; detailed design; programm

3. Those controls that seek to maintain confidentiality; integrity and availability of information

4. The organization using the outsourced service

5. The method used to identify the location of a participant in a network. Ideally; addressing specifies where the participant is located rather than who they are (name) or how to get there (routing).

6. A policy whereby access is denied unless it is specifically allowed. The inverse of default allow.

7. The entire set of data from which a sample is selected and about which the IS auditor wishes to draw conclusions

8. A database structured in a tree/root or parent/child relationship. Each parent can have many children; but each child may have only one parent.

9. A file format in which the file is divided into multiple subfiles and a directory is established to locate each subfile

10. The act of capturing network packets; including those not necessarily destined for the computer running the sniffing software

11. A point in a routine at which sufficient information can be stored to permit restarting the computation from that point. NOTE: seems to pertain to recover - shutting down database after all records have been committed for example

12. The individual responsible for the safeguard and maintenance of all program and data files

13. The act of giving the idea or impression of being or doing something

14. A process used to identify and evaluate risks and their potential effects

15. The highest level of management in the organization; responsible for direction and control of the organization as a whole (such as director; general manager; partner; chief officer and executive manager).

16. A permanent connection between hosts in a packet switched network

17. A procedure designed to ensure that no fields are missing from a record

18. A data recovery strategy that includes a recovery from complete backups that are physically shipped off site once a week. Specifically; logs are batched electronically several times daily; and then loaded into a tape library located at the same facil

19. The extent to which a system unit--subroutine; program; module; component; subsystem--performs a single dedicated function. Generally; the more cohesive are units; the easier it is to maintain and enhance a system; since it is easier to determine whe

20. A program that translates programming language (source code) into machine executable instructions (object code)

21. Tests of detailed activities and transactions; or analytical review tests; designed to obtain audit evidence on the completeness; accuracy or existence of those activities or transactions during the audit period

22. The electronic transmission of transactions (information) between two organizations. EDI promotes a more efficient paperless environment. EDI transmissions can replace the use of standard documents; including invoices or purchase orders.

23. A device that connects two similar networks together

24. The denial by one of the parties to a transaction or participation in all or part of that transaction or of the content of communications related to that transaction.

25. Records of system events generated by a specialized operating system mechanism