An IS auditor is providing input to an RFP to acquire a financial application system. Which of the following is MOST important for the auditor to recommend?
A.
The application should meet the organization's requirements.
B.
Vendor employee background checks should be conducted regularly.
C.
Audit trails should be included in the design.
D.
Potential suppliers should have experience in the relevant area.
Given that the question specifically asks what an auditor should recommend, the most relevant choice for the auditor's perspective is:
C. Audit trails should be included in the design.
From an IS auditor's point of view, ensuring that audit trails are included in the system design is critical. Audit trails provide a means to track user activities, detect unauthorized access or modifications, and support the accountability and integrity of financial data. This recommendation directly aligns with the auditor’s role in ensuring that controls are in place to support security, compliance, and data integrity within the system
A key objective of the RFP process is to select a vendor or solution that best meets the organization's needs and requirements. Therefore, it is essential for the IS auditor to emphasize that the financial application system should align with the organization's specific functional, technical, and security requirements.
upvoted 3 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Vima234
2 months, 1 week agoRS66
3 months, 2 weeks agoMJORGER
7 months, 2 weeks ago