ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 200 discussion

Actual exam question from Isaca's CISA
Question #: 200
Topic #: 1
[All CISA Questions]

When reviewing a data classification scheme, it is MOST important for an IS auditor to determine if:

  • A. the information owner is required to approve access to the asset.
  • B. senior IT managers are identified as information owners.
  • C. the security criteria are clearly documented for each classification.
  • D. each information asset is assigned to a different classification.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Changwha at July 16, 2023, 2:19 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Swallows
1 month, 1 week ago
Selected Answer: C
While it's also important to ensure that the information owner is involved in approving access to assets (option A), this aspect is more related to access control processes and may vary depending on organizational policies and procedures. However, having clear security criteria documented for each classification is foundational to effectively implementing access controls and ensuring that information is adequately protected throughout its lifecycle.
upvoted 1 times
...
Changwha
12 months ago
C. the security criteria are clearly documented for each classification.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago