exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam

Exam CISA topic 1 question 1108 discussion

Actual exam question from Isaca's CISA
Question #: 1108
Topic #: 1
[All CISA Questions]

Which of the following observations should be of GREATEST concern to an IS auditor when auditing web application security control as part of an IT general controls audit?

  • A. The application control configuration is not available.
  • B. An application control assessment has not been performed.
  • C. An application control matrix has not been established.
  • D. Application control is not aligned with an IT framework.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
FAGFUR
4 months ago
Selected Answer: B
The absence of an application control assessment indicates a lack of proactive evaluation and testing of the controls in place to secure the web application. This increases the risk of vulnerabilities and potential exploitation, as there is no systematic review and verification of the effectiveness of security controls.
upvoted 2 times
...
hoho
9 months, 2 weeks ago
Ans D, not align will be greatest
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago