CISA 무료 덤프문제 온라인 액세스

Which of the following is the PRIMARY role of the release plan?

• A.It identifies all configuration items within an IT environment.
• B.It provides a timeline and schedule for deploying new releases into production.
• C.It outlines the steps for database integration.
• D.It evaluates the impact of proposed changes and updates to IT systems.

During audit framework. an IS auditor teams that employees are allowed to connect their personal devices to company-owned computers. How can the auditor BEST validate that appropriate security controls are in place to prevent data loss?

• A.Review compliance with data loss and applicable mobile device user acceptance policies.
• B.Verify the data loss prevention (DLP) tool is properly configured by the organization.
• C.Conduct a walk-through to view results of an employee plugging in a device to transfer confidential data.
• D.Verify employees have received appropriate mobile device security awareness training.

At the end of each business day, a business-critical application generates a report of financial transac-tions greater than a certain value, and an employee then checks these transactions for errors. What type of control is in place?

• A.Preventive
• B.Corrective
• C.Deterrent
• D.Detective

Which of the following is MOST important during software license audits?

• A.Substantive testing
• B.Stop-or-go sampling
• C.Judgmental sampling
• D.Compliance testing

Which of the following should be considered when examining fire suppression systems as part of a data center environmental controls review?

• A.Onsite replacement availability
• B.Maintenance procedures
• C.Installation manuals
• D.Insurance coverage