Which of the following goals would you expect to find i…
Which of the following goals would you expect to find in an organization’s strategic plan?
Which of the following would an IS auditor consider the…
Which of the following would an IS auditor consider the MOST relevant to short-term planning for
an IS department?
In reviewing the IS short-range (tactical) plan, an IS …
In reviewing the IS short-range (tactical) plan, an IS auditor should determine whether:
To support an organization’s goals, an IS department sh…
To support an organization’s goals, an IS department should have:
Which of the following is normally a responsibility of …
Which of the following is normally a responsibility of the chief security officer (CSO)?
Which of the following is a risk of cross-training?
Which of the following is a risk of cross-training?
Which of the following is the BEST performance criterio…
Which of the following is the BEST performance criterion for evaluating the adequacy of an
organization’s security awareness training?
To gain an understanding of the effectiveness of an org…
To gain an understanding of the effectiveness of an organization’s planning and management of
investments in IT assets, an IS auditor should review the:
Which of the following activities performed by a databa…
Which of the following activities performed by a database administrator (DBA) should be performed
by a different person?
Which of the following reduces the potential impact of …
Which of the following reduces the potential impact of social engineering attacks?