CISA Exam Questions Get Updated [2022] with Correct Answers [Q204-Q227]

Share

CISA Exam Questions Get Updated [2022] with Correct Answers

Practice CISA Questions With Certification guide Q&A from Training Expert Free4Torrent


Format of ISACA CISA certification exam:

The CISA certification program has the following areas of functions:

  • Financial Information Systems
  • Enterprise Risk Management
  • Apply business processes to technology strategy, design, development, management, administration, and operations.
  • Information Systems Audit and Security
  • Standard Business Environment and Concepts

 

NEW QUESTION 204
Of the three major types of off-site processing facilities, what type is characterized by at least providing for electricity and HVAC?

  • A. Alternate site
  • B. Cold site
  • C. Warm site
  • D. Hot site

Answer: B

Explanation:
Explanation/Reference:
Of the three major types of off-site processing facilities (hot, warm, and cold), a cold site is characterized by at least providing for electricity and HVAC. A warm site improves upon this by providing for redundant equipment and software that can be made operational within a short time.

 

NEW QUESTION 205
An IS auditor is reviewing a bank's service level agreement (SLA) with a third-party provider that hosts the
bank's secondary data center. Which of the following findings should be of GREATEST concern to the
auditor?

  • A. The SLA has not been reviewed in more than a year
  • B. The recovery time objective (RTO) has a longer duration than documented in the disaster recovery plan
  • C. Backup data is hosted online only
  • D. The recovery point objective (RPO) has a shorter duration than documented in the disaster recovery
    plan

Answer: B

Explanation:
Section: The process of Auditing Information System

 

NEW QUESTION 206
Time constraints and expanded needs have been found by an IS auditor to be the root causes for recent violations of corporate data definition standards in a new business intelligence project. Which of the following is the MOST appropriate suggestion for an auditor to make?

  • A. Enforce standard compliance by adopting punitive measures against violators
  • B. Delay the project until compliance with standards can be achieved
  • C. Align the data definition standards after completion of the project
  • D. Achieve standards alignment through an increase of resources devoted to the project

Answer: D

Explanation:
Provided that data architecture, technical, and operational requirements are sufficiently documented, the alignment to standards could be treated as a specific work package assigned to new project resources. The usage of nonstandard data definitionswould lower the efficiency of the new development, and increase the risk of errors in critical business decisions. To change data definition standards after project conclusion (choice B) is risky and is not a viable solution. On the other hand, punishing the violators (choice D) or delaying the project (choice C) would be an inappropriate suggestion because of the likely damage to the entire project profitability.

 

NEW QUESTION 207
Several remote users have been unable to communicate with a secured network news transfer protocol
(NNTP) server. Of the following, the MOST likely cause is:

  • A. a hacker using a sniffer
  • B. a hacker impersonating the server
  • C. a replay attack by an eavesdropper
  • D. the use of a password cracker

Answer: B

Explanation:
Section: Information System Operations, Maintenance and Support

 

NEW QUESTION 208
During an IS audit the auditor identifies significant delays in granting computer access to new employees. Which of the following should be reviewed FIRST to determine the root cause?

  • A. Existing access rights
  • B. Service level agreements (SLAs)
  • C. Key performance indicators (KPIs)
  • D. Current workflow model .

Answer: D

 

NEW QUESTION 209
In the event of a data center disaster, which of the following would be the MOST appropriate strategy to enable a complete recovery of a critical database?

  • A. Daily data backup to tape and storage at a remote site
  • B. Real-time replication to a remote site
  • C. Hard disk mirroring to a local server
  • D. Real-time data backup to the local storage area network (SAN)

Answer: B

Explanation:
Explanation/Reference:
Explanation:
With real-time replication to a remote site, data are updated simultaneously in two separate locations; therefore, a disaster in one site would not damage the information located in the remote site. This assumes that both sites were not affected by the disaster. Daily tape backup recovery could lose up to a day's work of datA. Choices C and D take place in the same data center and could possibly be affected by the same disaster.

 

NEW QUESTION 210
An IS auditor should carefully review the functional requirements in a systems-development project to ensure that the project is designed to:

  • A. Enforce data security
  • B. Be culturally feasible
  • C. Meet business objectives
  • D. Be financially feasible

Answer: C

Explanation:
Explanation/Reference:
An IS auditor should carefully review the functional requirements in a systems-development project to ensure that the project is designed to meet business objectives.

 

NEW QUESTION 211
.________________ (fill in the blank) should be implemented as early as data preparation to support data integrity at the earliest point possible.

  • A. Parity bits
  • B. Control totals
  • C. Authorization controls
  • D. Authentication controls

Answer: B

Explanation:
Control totals should be implemented as early as data preparation to support data integrity at the earliest point possible.

 

NEW QUESTION 212
A configuration management audit identified that predefined automated procedures are used when deploying and configuring application infrastructure in a cloud-based environment. Which of the following is MOST important for the IS auditor to review?

  • A. Number of administrators with access to cloud management consoles
  • B. Processes for making changes to cloud environment specifications
  • C. Contracts of vendors responsible for maintaining provisioning tools
  • D. Storage location of configuration management documentation

Answer: A

 

NEW QUESTION 213
An IS auditor should review the configuration of which of the following protocols to detect unauthorized mappings between the IP address and the media access control (MAC) address?

  • A. Transmission Control Protocol (TCP)
  • B. Address Resolution Protocol (ARP)
  • C. Simple Object Access Protocol (SOAP)
  • D. Routing Information Protocol (RIP)

Answer: B

Explanation:
Address Resolution Protocol (ARP) provides dynamic address mapping between an IP address and hardware address. Simple Object Access Protocol (SOAP) is a platform-independent XML-based protocol, enabling applications to communicate with each other over the Internet, and does not deal with media access control (MAC) addresses. Routing Information Protocol (RIP) specifies how routers exchange routing table information. Transmission Control Protocol (TCP) enables two hosts to establish a connectionand exchange streams of data.

 

NEW QUESTION 214
.What type of approach to the development of organizational policies is often driven by risk assessment?

  • A. Comprehensive
  • B. Bottom-up
  • C. Top-down
  • D. Integrated

Answer: C

Explanation:
A bottom-up approach to the development of organizational policies is often driven by risk assessment.

 

NEW QUESTION 215
Which of the following is the MAIN purpose of an information security management system?

  • A. To reduce the frequency and impact of information security incidents
  • B. To enhance the impact of reports used to monitor information security incidents
  • C. To keep information security policies and procedures up-to-date
  • D. To identify and eliminate the root causes of information security incidents

Answer: A

 

NEW QUESTION 216
Which of the following should be of GREATEST concern to an IS auditor testing interface controls for an associated bank wire transfer process?

  • A. The wire transfer was not completed with the most recent secure protocol.
  • B. Customer-provided information does not appear to be accurate.
  • C. Data is not independently verified by a third party.
  • D. Data in the bank's wire transfer system does not reconcile with transferred data.

Answer: D

 

NEW QUESTION 217
An IS auditor finds that, at certain times of the day, the data warehouse query
performance decreases significantly. Which of the following controls would it be relevant for the IS auditor to review?

  • A. Read/write access log controls
  • B. Commitment and rollback controls
  • C. User spool and database limit controls
  • D. Permanent table-space allocation

Answer: C

Explanation:
User spool limits restrict the space available for running user queries. This prevents poorly formed queries from consuming excessive system resources and impacting general query performance. Limiting the space available to users in their own databases prevents them from building excessively large tables. This helps to control space utilization which itself acts to help performance by maintaining a buffer between the actual data volume stored and the physical device capacity. Additionally, it prevents users from consuming excessive resources in ad hoc table builds (as opposed to scheduled production loads that often can run overnight and are optimized for performance purposes), in a data warehouse, since you are not running online transactions, commitment and rollback does not have an impact on performance. The other choices are not as likely to be the root cause of this performance issue.

 

NEW QUESTION 218
During an external assessment of network vulnerability, which of the following activities should be
performed FIRST?

  • A. Monitor the network
  • B. Collect network information
  • C. Review policies
  • D. Implement an intrusion detection system (IDS)

Answer: B

Explanation:
Section: Information System Operations, Maintenance and Support

 

NEW QUESTION 219
Due to budget restraints, an organization is postponing the replacement of an in-house developed mission critical application. Which of the following represents the GREATEST risk?

  • A. Inability to align to changing business needs
  • B. Inability to virtualize the server
  • C. Maintenance costs may rise
  • D. Eventual replacement may be more expensive

Answer: A

 

NEW QUESTION 220
An IS auditor is reviewing standards and compliance requirements related to an upcoming systems audit.
The auditor notes that the industry standards are less stringent than local regulatory standards. How should the auditor proceed?

  • A. Audit to the standards with the highest requirements.
  • B. Audit to the policies and procedures of the organization.
  • C. Audit exclusively to the industry standards.
  • D. Coordinate with regulatory officers to determine necessary requirements.

Answer: D

Explanation:
Section: Governance and Management of IT

 

NEW QUESTION 221
During an audit, an IS auditor notices that the IT department of a medium-sized organization has no
separate risk management function, and the organization's operational risk documentation only contains a
few broadly described IT risks. What is the MOST appropriate recommendation in this situation?

  • A. No recommendation is necessary since the current approach is appropriate for a medium-sized
    organization.
  • B. Establish regular IT risk management meetings to identify and assess risks, and create a mitigation
    plan as input to the organization's risk management.
  • C. Use common industry standard aids to divide the existing risk documentation into several individual
    risks which will be easier to handle.
  • D. Create an IT risk management department and establish an IT risk framework with the aid of external
    risk management experts.

Answer: B

Explanation:
Section: Protection of Information Assets
Explanation:
Establishing regular meetings is the best way to identify and assess risks in a medium- sized organization,
to address responsibilities to the respective management and to keep the risk list and mitigation plans up to
date. A medium-sized organization would normally not have a separate IT risk management department.
Moreover, the risks are usually manageable enough so that external help would not be needed. While
common risks may be covered by common industry standards, they cannot address the specific situation of
an organization. Individual risks will not be discovered without a detailed assessment from within the
organization. Splitting the one risk position into several is not sufficient.

 

NEW QUESTION 222
When reviewing an organization's IT governance processes, which of the following provides the BEST indication that information security expectations are being met at all levels?

  • A. Utilization of an internationally recognized security standard
  • B. Implementation of a comprehensive security awareness program
  • C. Achievement of established security metrics
  • D. Approval of the security program by senior management

Answer: C

Explanation:
Section: Governance and Management of IT

 

NEW QUESTION 223
Which of the following BEST ensures the integrity of a server's operating system?

  • A. Protecting the server in a secure location
  • B. Hardening the server configuration
  • C. Setting a boot password
  • D. Implementing activity logging

Answer: B

Explanation:
Explanation/Reference:
Explanation:
Hardening a system means to configure it in the most secure manner (install latest security patches, properly define the access authorization for users and administrators, disable insecure options and uninstall unused services) to prevent nonprivileged users from gaining the right to execute privileged instructions and thus take control of the entire machine, jeopardizing the OS's integrity. Protecting the server in a secure location and setting a boot password are good practices, but do not ensure that a user will not try to exploit logical vulnerabilities and compromise the OS. Activity logging has two weaknesses in this scenario-it is a detective control (not a preventive one), and the attacker who already gained privileged accesscan modify logs or disable them.

 

NEW QUESTION 224
The MOST important difference between hashing and encryption is that hashing:

  • A. is the same at the sending and receiving end.
  • B. is concerned with integrity and security.
  • C. output is the same length as the original message.
  • D. is irreversible.

Answer: D

Explanation:
Section: Protection of Information Assets
Explanation/Reference:
Explanation:
Hashing works one way; by applying a hashing algorithm to a message, a message hash/digest is created.
If the same hashing algorithm is applied to the message digest, it will not result in the original message. As such, hashing is irreversible, while encryption is reversible. This is the basic difference between hashing and encryption. Hashing creates an output that is smaller than the original message, and encryption creates an output of the same length as the original message. Hashing is used to verify the integrity of the message and does not address security. The same hashing algorithm is used at the sending and receiving ends to generate and verify the message hash/digest. Encryption will not necessarily use the same algorithm at the sending and receiving and to encrypt and decrypt.

 

NEW QUESTION 225
Which of the following provides the BEST evidence of an organization's disaster recovery readiness?

  • A. Customer references for the alternate site provider
  • B. Processes for maintaining the disaster recovery plan
  • C. Results of tests and drills
  • D. A disaster recovery plan

Answer: C

Explanation:
Section: Protection of Information Assets
Explanation:
Plans are important, but mere plans do not provide reasonable assurance unless tested. References for the alternate site provider and the existence and maintenance of a disaster recovery plan are important, but only tests and drills demonstrate the adequacy of the plans and provide reasonable assurance of an organization's disaster recovery readiness.

 

NEW QUESTION 226
If an IS auditor observes that an IS department fails to use formal documented methodologies, policies, and standards, what should the auditor do?

  • A. Lack of IT documentation is not usually material to the controls tested in an IT audit.
  • B. The auditor should at least document the informal standards and policies, and test for a compliance.
    Furthermore, the IS auditor should recommend management that formal documented policies be developed and implemented.
  • C. The auditor should at least document the informal standards and policies, and test for compliance.
    Furthermore, the IS auditor should create formal documented policies to be implemented.
  • D. The auditor should at least document the informal standards and policies. Furthermore, the IS auditor should create formal documented policies to be implemented.

Answer: B

Explanation:
Explanation/Reference:
Explanation:
If an IS auditor observes that an IS department fails to use formal documented methodologies, policies, and standards, the auditor should at least document the informal standards and policies, and test for compliance. Furthermore, the IS auditor should recommend to management that formal documented policies be developed and implemented.

 

NEW QUESTION 227
......

Prepare Top ISACA CISA Exam Audio Study Guide Practice Questions Edition: https://www.free4torrent.com/CISA-braindumps-torrent.html

Free ISACA CISA Test Practice Test Questions Exam Dumps: https://drive.google.com/open?id=1cuuBKAwSvUqjz1K-7NvKHlMZMmK3T0Z9