bundle

50%

You are here: Home > ISACA Exam Questions > CISA (v.1) > In an organization where an IT security baseline has been defined, an IS auditor should FIRST ensure:

PrepAway - Latest Free Exam Questions & Answers

In an organization where an IT security baseline has been defined, an IS auditor should FIRST ensure:

seenagapeApril 26, 2014

In an organization where an IT security baseline has been defined, an IS auditor should FIRST
ensure:

PrepAway - Latest Free Exam Questions & Answers

A.
implementation.

B.
compliance.

C.
documentation.

D.
sufficiency.

Explanation:
An IS auditor should first evaluate the definition of the minimum baseline level by ensuring the
sufficiency of controls. Documentation, implementation and compliance are further steps.

2 Comments on “In an organization where an IT security baseline has been defined, an IS auditor should FIRST ensure:”

Gramesh says:

August 27, 2015 at 11:10 am

I think it should be B
check if complied then check for sufficiency of baseline controls.

0

0

Log in to Reply
Lorie says:

May 23, 2017 at 3:00 pm

Answer is D. D. An IS auditor should first evaluate the definition of the minimum baseline level by ensuring the sufficiency of the control baseline to meet security requirements.

0

0

Log in to Reply

Leave a Reply Cancel reply

You must be logged in to post a comment.

Move Up