Responsibility and reporting lines cannot always be established when auditing automated systems
since:

An IS auditor finds out-of-range data in some tables of a database. Which of the following controls
should the IS auditor recommend to avoid this situation?

During an application audit, an IS auditor finds several problems related to corrupted data in the
database. Which of the following is a corrective control that the IS auditor should recommend?

During a postimplementation review of an enterprise resource management system, an IS auditor
would MOST likely:

The reason a certification and accreditation process is performed on critical systems is to ensure
that:

An organization is migrating from a legacy system to an enterprise resource planning (ERP) system.
While reviewing the data migration activity, the MOST important concern for the IS auditor is to
determine that there is a:

From a risk management point of view, the BEST approach when implementing a large and
complex IT infrastructure is:

Which of the following would impair the independence of a quality assurance team?

Which of the following system and data conversion strategies provides the GREATEST redundancy?

An organization is implementing a new system to replace a legacy system. Which of the following
conversion practices creates the GREATEST risk?