The MAJOR advantage of the risk assessment approach over the baseline approach to information security managem
The MAJOR advantage of the risk assessment approach over the baseline approach to information
security management is that it ensures:
Which of the following sampling methods is MOST useful when testing for compliance?
Which of the following sampling methods is MOST useful when testing for compliance?
Which of the following is the MOST likely reason why e-mail systems have become a useful source of evidence fo
Which of the following is the MOST likely reason why e-mail systems have become a useful source of
evidence for litigation?
Which of the following situations may have impaired the independence of the IS auditor?
An IS auditor is assigned to perform a postimplementation review of an application system. Which of
the following situations may have impaired the independence of the IS auditor? The IS auditor:
The PRIMARY advantage of a continuous audit approach is that it:
The PRIMARY advantage of a continuous audit approach is that it:
The PRIMARY purpose of audit trails is to:
The PRIMARY purpose of audit trails is to:
When developing a risk-based audit strategy, an IS auditor should conduct a risk assessment to ensure that:
When developing a risk-based audit strategy, an IS auditor should conduct a risk assessment to
ensure that:
To ensure that audit resources deliver the best value to the organization, the FIRST step would be to:
To ensure that audit resources deliver the best value to the organization, the FIRST step would be to:
An organization’s IS audit charter should specify the:
An organization’s IS audit charter should specify the:
The IS auditor should FIRST review:
An IS auditor is evaluating management’s risk assessment of information systems. The IS auditor
should FIRST review: