Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 37 discussion

Actual exam question from Isaca's CISA
Question #: 37
Topic #: 1
[All CISA Questions]

An organization recently implemented a cloud document storage solution and removed the ability for end users to save data to their local workstation hard drives.
Which of the following findings should be the IS auditor's GREATEST concern?

  • A. Mobile devices are not encrypted.
  • B. Users are not required to sign updated acceptable use agreements.
  • C. The business continuity plan (BCP) was not updated.
  • D. Users have not been trained on the new system.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Zephaniah at Sept. 6, 2022, 2:03 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Zephaniah
Highly Voted 2 years, 2 months ago
BCP is key, incase of any risk
upvoted 5 times
...
Pumeza
Most Recent 1 week, 1 day ago
c for charlie
upvoted 1 times
...
chadeeu
1 week, 5 days ago
Selected Answer: A
A. Mobile devices are not encrypted: This is the greatest concern because unencrypted mobile devices pose a significant risk to data security. If these devices are lost or stolen, sensitive data stored on them could be easily accessed by unauthorized individuals, leading to potential data breaches.
upvoted 1 times
...
Sibsankar
3 months, 1 week ago
Must be C
upvoted 1 times
...
a84n
6 months, 3 weeks ago
Selected Answer: D
Answer: D While updating the BCP is essential for long-term resilience, addressing the lack of user training is more critical in the short term to mitigate immediate risks associated with the new system implementation. Therefore, the IS auditor's greatest concern would likely be the absence of user training.
upvoted 3 times
...
5b56aae
7 months ago
Selected Answer: A
not encrypting is sin
upvoted 1 times
...
Swallows
7 months, 1 week ago
Selected Answer: C
Given the change in where data is stored, we need to reconsider how we respond to emergencies.
upvoted 2 times
choboanon
2 months ago
BCP has nothing to do with implementing a new system. It's for responding to emergencies like you said.
upvoted 1 times
...
...
Vima234
8 months, 3 weeks ago
Selected Answer: A
While all the findings mentioned are important considerations for the organization's security and compliance posture, the lack of encryption on mobile devices poses the most significant risk. With the implementation of a cloud document storage solution and the removal of the ability for users to save data locally, there's a heightened reliance on mobile devices for accessing and storing data. If these devices are not encrypted, sensitive information stored on them could be at risk of unauthorized access or exposure in the event of loss or theft
upvoted 3 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel