Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 168 discussion

Actual exam question from Isaca's CISA
Question #: 168
Topic #: 1
[All CISA Questions]

Secure code reviews as part of a continuous deployment program are which type of control?

  • A. Detective
  • B. Corrective
  • C. Logical
  • D. Preventive
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by saado9 at March 21, 2023, 6:11 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
veli_117
1 month, 1 week ago
Selected Answer: D
If the code review happens before deployment, it is preventive. It depends on the interpretation.
upvoted 1 times
...
a84n
6 months, 3 weeks ago
Selected Answer: D
Answer: D and only D
upvoted 1 times
...
Swallows
7 months, 1 week ago
Selected Answer: B
Continuous deployment is a software development strategy that ensures that code changes to an application are automatically released into the production environment. This automation is accomplished through a series of predefined tests.
upvoted 1 times
...
akosigengen
1 year, 1 month ago
A. Detective
upvoted 2 times
...
starzuu
1 year, 4 months ago
Secure code reviews are a measure of detective control. From the CISA Review Manual figure 1.5 under detective controls. • Use controls that detect and report the • Hash totals occurrence of an error, omission or • Check points in production jobs malicious act • Echo controls in telecommunications • Error messages over tape labels • Duplicate checking of calculations • Periodic performance reporting with variances • Past-due account reports • Internal audit functions • Review of activity logs to detect unauthorized access attempts • Secure code reviews • Software quality assurance
upvoted 4 times
...
007Georgeo
1 year, 6 months ago
Selected Answer: A
The answer is D , Because , Secure code review is a manual or automated process that examines an application's source code. The goal of this examination is to identify any existing security flaws or vulnerabilities. Code review specifically looks for logic errors, examines spec implementation, and checks style guidelines, among other activities.
upvoted 4 times
...
saado9
1 year, 8 months ago
why not A:Detective ?
upvoted 2 times
Peter_CISA
1 year, 7 months ago
The answer is A because ISACA review book in section 1 said it!
upvoted 4 times
...
SBD600
1 year, 6 months ago
Secure code reviews as part of a continuous deployment program are a preventive control. Preventive controls are designed to stop security issues from occurring in the first place. By reviewing the code for security vulnerabilities before it is deployed, organizations can identify and fix potential issues, thereby preventing security breaches or other incidents from happening.
upvoted 7 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel