Why does an IS auditor review an organization chart?
Why does an IS auditor review an organization chart?
Who is responsible for implementing cost-effective cont…
Who is responsible for implementing cost-effective controls in an automated system?
what is the auditor’s primary responsibility?
If an IS auditor finds evidence of risk involved in not implementing proper segregation of duties,
such as having the security administrator perform an operations function, what is the auditor’s
primary responsibility?
True or false?
An advantage of a continuous audit approach is that it can improve system security when used in
time-sharing environments that process a large number of transactions. True or false?
True or false?
An integrated test facility is not considered a useful audit tool because it cannot compare
processing output with independently calculated datA. True or false?
Which of the following is of greatest concern to the IS…
Which of the following is of greatest concern to the IS auditor?
Which of the following is best suited for searching for…
Which of the following is best suited for searching for address field duplications?
What type of risk is associated with authorized program…
What type of risk is associated with authorized program exits (trap doors)? Choose the BEST
answer.
What is the recommended initial step for an IS auditor …
What is the recommended initial step for an IS auditor to implement continuous-monitoring systems?
which of the following?
To properly evaluate the collective effect of preventative, detective, or corrective controls within a
process, an IS auditor should be aware of which of the following? Choose the BEST answer.