CISA Exam - Free Actual Q&As, Page 1

Topic 1 - Single Topic

Question #1 Topic 1

Which of the following should be of GREATEST concern to an IS auditor reviewing an organization's business continuity plan (BCP)?

A. The BCP has not been tested since it was first issued.
B. The BCP is not version-controlled.
C. The BCP's contact information needs to be updated.
D. The BCP has not been approved by senior management.

Reveal Solution Discussion 34

Correct Answer: A 🗳️

Question #2 Topic 1

Which of the following would be MOST useful when analyzing computer performance?

A. Tuning of system software to optimize resource usage
B. Operations report of user dissatisfaction with response time
C. Statistical metrics measuring capacity utilization
D. Report of off-peak utilization and response time

Reveal Solution Discussion 21

Correct Answer: C 🗳️

Question #3 Topic 1

Which of the following is the GREATEST risk if two users have concurrent access to the same database record?

A. Entity integrity
B. Availability integrity
C. Referential integrity
D. Data integrity

Reveal Solution Discussion 13

Correct Answer: D 🗳️

Question #4 Topic 1

Which of the following is the MOST effective way for an organization to help ensure agreed-upon action plans from an IS audit will be implemented?

A. Ensure ownership is assigned.
B. Test corrective actions upon completion.
C. Ensure sufficient audit resources are allocated.
D. Communicate audit results organization-wide.

Reveal Solution Discussion 8

Correct Answer: A 🗳️

Question #5 Topic 1

Which of the following issues associated with a data center's closed circuit television (CCTV) surveillance cameras should be of MOST concern to an IS auditor?

A. CCTV recordings are not regularly reviewed.
B. CCTV records are deleted after one year.
C. CCTV footage is not recorded 24 x 7.
D. CCTV cameras are not installed in break rooms.

Reveal Solution Discussion 29

Correct Answer: A 🗳️

Question #6 Topic 1

An IS auditor has been asked to audit the proposed acquisition of new computer hardware. The auditor's PRIMARY concern is that:

A. a clear business case has been established.
B. the new hardware meets established security standards.
C. a full, visible audit trail will be included.
D. the implementation plan meets user requirements.

Reveal Solution Discussion 8

Correct Answer: A 🗳️

Question #7 Topic 1

To confirm integrity for a hashed message, the receiver should use:

A. the same hashing algorithm as the sender's to create a binary image of the file.
B. a different hashing algorithm from the sender's to create a numerical representation of the file.
C. a different hashing algorithm from the sender's to create a binary image of the file.
D. the same hashing algorithm as the sender's to create a numerical representation of the file.

Reveal Solution Discussion 20

Correct Answer: D 🗳️

Question #8 Topic 1

An organization is implementing a new system that supports a month-end business process. Which of the following implementation strategies would be MOST efficient to decrease business downtime?