← Back to exam page

CISA Certified Information Systems Auditor

Loading demo links...

Showing 16–18 of 20 questions

Question 16 (Exam Pool A)

Which of the following BEST guards against the risk of attack by hackers?

Select an option, then click Submit answer.

  • Tunneling

  • Encryption

  • Message validation

  • Firewalls
Question 17 (Exam Pool C)

Which of the following is the BEST way to mitigate the risk associated with unintentional modifications of complex calculations in end-user computing (EUC)?

Select an option, then click Submit answer.

  • Have an independent party review the source calculations

  • Execute copies of EUC programs out of a secure library

  • implement complex password controls

  • Verify EUC results through manual calculations
Question 18 (Exam Pool B)

An organization that has suffered a cyber attack is performing a forensic analysis of the affected users' computers. Which of the following should be of GREATEST concern for the IS auditor reviewing this process?

Select an option, then click Submit answer.

  • An imaging process was used to obtain a copy of the data from each computer.

  • The legal department has not been engaged.

  • The chain of custody has not been documented.

  • Audit was only involved during extraction of the Information