To determine which users can gain access to the privileged supervisory state, which of the following should an
IS auditor review?

Which of the following procedures would MOST effectively detect the loading of illegal software packages onto
a network?

During a human resources (HR) audit, an IS auditor is informed that there is a verbal agreement between the IT
and HR departments as to the level of IT services expected. In this situation, what should the IS auditor do
FIRST?

IT best practices for the availability and continuity of IT services should:

Which of the following should be of PRIMARY concern to an IS auditor reviewing the management of external
IT service providers?

The PRIMARY objective of service-level management (SLM) is to:

An organization has outsourced its help desk. Which of the following indicators would be the best to include in
the SLA?

A benefit of quality of service (QoS) is that the:

Which of the following reports should an IS auditor use to check compliance with a service level agreement’s
(SLA) requirement for uptime?

When performing an audit of a client relationship management (CRM) system migration project, which of the
following should be of GREATEST concern to an IS auditor?