Which of the following is the BEST practice to ensure that access authorizations are still valid?

A technical lead who was working on a major project has left the organization. The project manager
reports suspicious system activities on one of the servers that is accessible to the whole team. What
would be of GREATEST concern if discoveredduring a forensic investigation?

An organization is using an enterprise resource management (ERP) application. Which of the
following would be an effective access control?

What should be the GREATEST concern to an IS auditor when employees use portable media (MP3
players, flash drives)?

An IS auditor should expect the responsibility for authorizing access rights to production data and
systems to be entrusted to the:

An IS auditor has completed a network audit. Which of the following is the MOST significant logical
security finding?

Which of the following would MOST effectively enhance the security of a challenge-response based
authentication system?

Which of the following should an IS auditor recommend for the protection of specific sensitive
information stored in the data warehouse?

The responsibility for authorizing access to a business application system belongs to the:

An organization has created a policy that defines the types of web sites that users are forbidden to
access. What is the MOST effective technology to enforce this policy?