ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 1697 discussion

Actual exam question from Isaca's CISA
Question #: 1697
Topic #: 1
[All CISA Questions]

Which of the following conditions should be of GREATEST concern to an IS auditor reviewing change management?

  • A. Vendors do not have access to apply changes to the quality assurance (QA) environment.
  • B. The individual applying the changes is not responsible for approving the changes.
  • C. Change management documentation is not submitted prior to development.
  • D. The change management process does not include vendor-supplied changes.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by pLulu at Nov. 21, 2024, 5:47 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
pLulu
3 months, 3 weeks ago
D. The change management process does not include vendor-supplied changes. This is the greatest concern because vendor-supplied changes can introduce significant risks if not properly managed. These changes might include patches, updates, or new software versions that could affect the system's stability, security, and compliance. If the change management process does not account for these changes, it could lead to untested and potentially harmful modifications being applied to the production environment.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago