ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 1653 discussion

Actual exam question from Isaca's CISA
Question #: 1653
Topic #: 1
[All CISA Questions]

An IS auditor detects the presence of known ransomware indicators. What should the auditor do NEXT?

  • A. Research the type of ransomware to determine the associated risk.
  • B. Recommend a tool to remove the ransomware from the server.
  • C. Notify the parties responsible for the server.
  • D. Determine whether documented procedures exist for ransomware removal.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Pokekai90 at Oct. 24, 2024, 4:53 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
46080f2
2 weeks, 2 days ago
Selected Answer: C
The CISA manual 28th ed strongly suggest immediate notification in case of significant security issues or potential threats: "If the IS auditor encounters material irregularities or illegal acts, they should report any matter of material irregularities or illegal acts to management." Ransomware activity would likely be considered a material irregularity or an illegal act.
upvoted 1 times
...
Pokekai90
5 months, 3 weeks ago
Selected Answer: C
Option C
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago