Which of the following presents an inherent risk with no distinct identifiable preventive controls?
Which of the following presents an inherent risk with no distinct identifiable preventive controls?
Which of the following is a general operating system access control function?
Which of the following is a general operating system access control function?
Which of the following BEST restricts users to those functions needed to perform their duties?
Which of the following BEST restricts users to those functions needed to perform their duties?
For a discretionary access control to be effective, it must:
For a discretionary access control to be effective, it must:
An IS auditor examining a biometric user authentication system establishes the existence of a control weakness
An IS auditor examining a biometric user authentication system establishes the existence of a control weakness that would allow an unauthorized individual to update the centralized database on the server that is used to store biometric templates. Of the following, which is the BEST control against this risk?
From a control perspective, the PRIMARY objective of classifying information assets is to:
From a control perspective, the PRIMARY objective of classifying information assets is to:
An organization has been recently downsized, in light of this, an IS auditor decides to test logical access co
An organization has been recently downsized, in light of this, an IS auditor decides to test logical access controls. The IS auditors PRIMARY concern should be that:
The logical exposure associated with the use of a checkpoint restart procedure is:
The logical exposure associated with the use of a checkpoint restart procedure is:
Inadequate programming and coding practices introduce the risk of:
Inadequate programming and coding practices introduce the risk of:
Which of the following would prevent unauthorized changes to information stored in a servers log?
Which of the following would prevent unauthorized changes to information stored in a servers log?