Which of the following findings should give the IS audi…
An IS auditor is evaluating a corporate network for a possible penetration by employees. Which of
the following findings should give the IS auditor the GREATEST concern?
Which of the following tools are MOST suitable for perf…
In an IS audit of several critical servers, the IS auditor wants to analyze audit trails to discover
potential anomalies in user or system behavior. Which of the following tools are MOST suitable for
performing that task?
What should the auditor do?
An IS auditor is performing an audit of a remotely managed server backup. The IS auditor reviews
the logs for one day and finds one case where logging on a server has failed with the result that
backup restarts cannot be confirmed. What should the auditor do?
The PRIMARY purpose of an IT forensic audit is:
The PRIMARY purpose of an IT forensic audit is:
An IS auditor evaluating logical access controls should…
An IS auditor evaluating logical access controls should FIRST:
When selecting audit procedures, an IS auditor should u…
When selecting audit procedures, an IS auditor should use professional judgment to ensure that:
During the planning stage of an IS audit, the PRIMARY g…
During the planning stage of an IS audit, the PRIMARY goal of an IS auditor is to:
An IS auditor should use statistical sampling and not j…
An IS auditor should use statistical sampling and not judgment (nonstatistical) sampling, when:
While planning an audit, an assessment of risk should b…
While planning an audit, an assessment of risk should be made to provide:
The extent to which data will be collected during an IS…
The extent to which data will be collected during an IS audit should be determined based on the: