Who is accountable for maintaining appropriate security measures over information assets?
Who is accountable for maintaining appropriate security measures over information assets?
True or false?
Proper segregation of duties prohibits a system analyst from performing quality-assurance
functions. True or false?
What should an IS auditor do if he or she observes that project-approval procedures do not exist?
What should an IS auditor do if he or she observes that project-approval procedures do not exist?
Who is ultimately accountable for the development of an IS security policy?
Who is ultimately accountable for the development of an IS security policy?
True or false?
Proper segregation of duties normally does not prohibit a LAN administrator from also having
programming responsibilities. True or false?
A core tenant of an IS strategy is that it must:
A core tenant of an IS strategy is that it must:
Batch control reconciliation is a _____________________ (fill in the blank) control for mitigating risk of ina
Batch control reconciliation is a _____________________ (fill in the blank) control for mitigating
risk of inadequate segregation of duties.
Key verification is one of the best controls for ensuring that:
Key verification is one of the best controls for ensuring that:
how likely is it that a company’s implementation of IT will be successful?
If senior management is not committed to strategic planning, how likely is it that a company’s
implementation of IT will be successful?
Which of the following could lead to an unintentional loss of confidentiality?
Which of the following could lead to an unintentional loss of confidentiality? Choose the BEST
answer.