Isaca CISA Online Practice Questions and Exam Preparation

Isaca CISA Online Questions & Answers

• Question 1451:

  Which of the following BEST indicates that an incident management process is effective?

  A. Decreased number of calls to the help desk
  B. Decreased time for incident resolution
  C. Increased number of incidents reviewed by IT management
  D. Increased number of reported critical incidents
  B. Decreased time for incident resolution

  ---

  Explanation

• Question 1452:

  When reviewing hard disk utilization reports, an IS auditor observes that utilization is routinely above 95%. Which of the following should be the GREATEST concern to the IS auditor?

  A. Availability
  B. Consistency
  C. Denial of service (DoS) attacks
  D. Data security
  A. Availability

  ---

  Explanation

• Question 1453:

  An internal review reveals an out-of-support human resources system. Which of the following is MOST important to determine when evaluating the associated risk?

  A. Frequency of outages associated with the out-of-support system
  B. The number of people accessing the out-of-support system
  C. Exposure of the out-of-support system outside of the network
  D. Timeline to replace the out-of-support system
  D. Timeline to replace the out-of-support system

  ---

  Explanation

• Question 1454:

  An organization implemented a cybersecurity policy last year Which of the following is the GREATE ST indicator that the policy may need to be revised?

  A. A significant increase in authorized connections to third parties
  B. A significant increase in cybersecurity audit findings
  C. A significant increase in approved exceptions
  D. A significant increase in external attack attempts
  C. A significant increase in approved exceptions

  ---

  Explanation

  The greatest indicator that the cybersecurity policy may need to be revised is a significant increase in approved exceptions. This implies that the policy is not aligned with the current business needs and risks, and that it may be too restrictive or outdated. The other options are not necessarily indicators of a need for policy revision, as they may be due to other factors such as changes in the external environment, audit scope or methodology.

  References: CISA Review Manual (Digital Version), Chapter 5, Section 5.21

• Question 1455:

  An IS auditor decides to review a data inventory list captured directly from a system instead of relying on an interview with the system owner. Which of the following provides the BEST justification for the auditor's decision?

  A. Independence of the evidence provider
  B. Qualification of the evidence provider
  C. Reliability of the evidence
  D. Timing of the evidence
  C. Reliability of the evidence

  ---

  Explanation

  Explanation

• Question 1456:

  An online retailer is receiving customer complaints about receiving different items from what they ordered on the organization's website. The root cause has been traced to poor data quality. Despite efforts to clean erroneous data from the system, multiple data quality issues continue to occur. Which of the following recommendations would be the BEST way to reduce the likelihood of future occurrences?

  A. Assign responsibility for improving data quality.
  B. Invest in additional employee training for data entry.
  C. Outsource data cleansing activities to reliable third parties.
  D. Implement business rules to validate employee data entry.
  D. Implement business rules to validate employee data entry.

  ---

  Explanation

  Implementing business rules to validate employee data entry is the best way to reduce the likelihood of future occurrences of poor data quality that cause customer complaints about receiving different items from what they ordered on the organization's website. Business rules are logical statements that define the conditions and actions for data validation, such as checking for data completeness, accuracy, consistency, and integrity. Assigning responsibility for improving data quality, investing in additional employee training for data entry, and outsourcing data cleansing activities to reliable third parties are also possible ways to improve data quality, but they are not as effective as implementing business rules to validate employee data entry.

  References: CISA Review Manual (Digital Version), Chapter 4, Section 4.3.1

• Question 1457:

  Which of the following procedures should an IS auditor complete FIRST when evaluating the adequacy of IT key performance indicators (KPIs)?

  A. Independently calculate the accuracy of the KPIs.
  B. Review KPIs that indicate poor IT performance.
  C. Validate the KPI thresholds.
  D. Determine whether the KPIs support IT objectives.
  D. Determine whether the KPIs support IT objectives.

  ---

  Explanation

• Question 1458:

  An organization uses an automated continuous integration/continuous deployment (CI/CD) tool to deploy changes to production. Which of the following would be an IS auditor's GREATEST concern in this situation?

  A. Releases are scheduled once per week.
  B. Post-implementation reviews are conducted quarterly.
  C. Test cases may be inaccurate.
  D. Functional requirements are changed frequently by users.
  C. Test cases may be inaccurate.

  ---

  Explanation

  Explanation

• Question 1459:

  Which of the following transmission media would NOT be affected by cross talk or interference?

  A. Copper cable
  B. Radio System
  C. Satellite radio link
  D. Fiber optic cables
  D. Fiber optic cables

  ---

  Explanation

  Only fiber optic cables are not affected by crosstalk or interference.

  For your exam you should know the information about transmission media:

  Copper Cable Copper cable is very simple to install and easy to tap. It is used mostly for short distance and supports voice and data. Copper has been used in electric wiring since the invention of the electromagnet and the telegraph in the 1820s.The invention of the telephone in 1876 created further demand for copper wire as an electrical conductor. Copper is the electrical conductor in many categories of electrical wiring. Copper wire is used in power generation, power transmission, power distribution, telecommunications, electronics circuitry, and countless types of electrical equipment. Copper and its alloys are also used to make electrical contacts. Electrical wiring in buildings is the most important market for the copper industry. Roughly half of all copper mined is used to manufacture electrical wire and cable conductors. Copper Cable

  

  Coaxial cable Coaxial cable, or coax (pronounced 'ko.aks), is a type of cable that has an inner conductor surrounded by a tubular insulating layer, surrounded by a tubular conducting shield. Many coaxial cables also have an insulating outer sheath or jacket. The term coaxial comes from the inner conductor and the outer shield sharing a geometric axis. Coaxial cable was invented by English engineer and mathematician Oliver Heaviside, who patented the design in 1880.Coaxial cable differs from other shielded cable used for carrying lower-frequency signals, such as audio signals, in that the dimensions of the cable are controlled to give a precise, constant conductor spacing, which is needed for it to function efficiently as a radio frequency transmission line.

  Coaxial cable is expensive and does not support many LAN's. It supports data and video Coaxial Cable

  

  Fiber optics An optical fiber cable is a cable containing one or more optical fibers that are used to carry light. The optical fiber elements are typically individually coated with plastic layers and contained in a protective tube suitable for the environment where the cable will be deployed. Different types of cable are used for different applications, for example long distance telecommunication, or providing a high-speed data connection between different parts of a building.

  Fiber optics used for long distance, hard to splice, not vulnerable to cross talk and difficult to tap. It supports voice data, image and video.

  Radio System

  Radio systems are used for short distance, cheap and easy to tap.

  Radio is the radiation (wireless transmission) of electromagnetic signals through the atmosphere or free space.

  Information, such as sound, is carried by systematically changing (modulating) some property of the radiated waves, such as their amplitude, frequency, phase, or pulse width. When radio waves strike an electrical conductor, the oscillating

  fields induce an alternating current in the conductor. The information in the waves can be extracted and transformed back into its original form.

  Fiber Optics

  

  Microwave radio system Microwave transmission refers to the technology of transmitting information or energy by the use of radio waves whose wavelengths are conveniently measured in small numbers of centimeter; these are called microwaves. Microwaves are widely used for point-to-point communications because their small wavelength allows conveniently-sized antennas to direct them in narrow beams, which can be pointed directly at the receiving antenna. This allows nearby microwave equipment to use the same frequencies without interfering with each other, as lower frequency radio waves do. Another advantage is that the high frequency of microwaves gives the microwave band a very large information- carrying capacity; the microwave band has a bandwidth 30 times that of all the rest of the radio spectrum below it. A disadvantage is that microwaves are limited to line of sight propagation; they cannot pass around hills or mountains as lower frequency radio waves can.

  Microwave radio transmission is commonly used in point-to-point communication systems on the surface of the Earth, in satellite communications, and in deep space radio communications. Other parts of the microwave radio band are used for radars, radio navigation systems, sensor systems, and radio astronomy.

  Microwave radio systems are carriers for voice data signal, cheap and easy to tap.

  Microwave Radio System

  

  Satellite Radio Link

  Satellite radio is a radio service broadcast from satellites primarily to cars, with the signal broadcast nationwide, across a much wider geographical area than terrestrial radio stations. It is available by subscription, mostly commercial free, and

  offers subscribers more stations and a wider variety of programming options than terrestrial radio.

  Satellite radio link uses transponder to send information and easy to tap.

  The following answers are incorrect:

  Copper Cable- Copper cable is very simple to install and easy to tap. It is used mostly for short distance and supports voice and data.

  Radio System - Radio systems are used for short distance, cheap and easy to tap.

  Satellite Radio Link - Satellite radio link uses transponder to send information and easy to tap.

  CISA review manual 2014 page number 265 and

  Official ISC2 guide to CISSP CBK 3rd Edition Page number 233

• Question 1460:

  Which of the following attack techniques will succeed because of an inherent security weakness in an Internet firewall?

  A. Phishing
  B. Using a dictionary attack of encrypted passwords
  C. Intercepting packets and viewing passwords
  D. Flooding the site with an excessive number of packets
  D. Flooding the site with an excessive number of packets

  ---

  Explanation

  Flooding the site with an excessive number of packets is an attack technique that will succeed because of an inherent security weakness in an Internet firewall. This type of attack is also known as a denial-of-service (DoS) attack or a distributed denial-of-service (DDoS) attack if it involves multiple sources. The aim of this attack is to overwhelm the network bandwidth or the processing capacity of the firewall or the target system, rendering it unable to respond to legitimate requests or perform its normal functions. An Internet firewall is a device or software that monitors and controls incoming and outgoing network traffic based on predefined rules. A firewall can block or allow traffic based on various criteria, such as source address, destination address, port number, protocol type, application type, etc. However, a firewall cannot prevent traffic from reaching its interface or distinguish between legitimate and malicious traffic based on its content or behavior. Therefore, a firewall is vulnerable to flooding attacks that exploit its limited resources. Phishing is an attack technique that involves sending fraudulent emails or messages that appear to come from legitimate sources, such as banks, government agencies, online services, etc., in order to trick recipients into revealing their personal or financial information, such as passwords, credit card numbers, bank account details, etc., or into clicking on malicious links or attachments that can infect their systems with malware or ransomware. Phishing does not exploit an inherent security weakness in an Internet firewall, but rather exploits human psychology and social engineering techniques. A firewall cannot prevent phishing emails or messages from reaching their intended targets, unless they contain some identifiable features that can be filtered out by the firewall rules. However, a firewall cannot detect or prevent users from responding to phishing emails or messages or from opening malicious links or attachments. Using a dictionary attack of encrypted passwords is an attack technique that involves trying to guess or crack passwords by using a list of common or likely passwords or by using a brute-force method that tries all possible combinations of characters. This type of attack does not exploit an inherent security weakness in an Internet firewall, but rather exploits weak or poorly chosen passwords or weak encryption algorithms. A firewall cannot prevent a dictionary attack of encrypted passwords, unless it has some mechanisms to detect and block repeated or suspicious login attempts or to enforce strong password policies. However, a firewall cannot protect passwords from being stolen or intercepted by other means, such as phishing, malware, keylogging, etc. Intercepting packets and viewing passwords is an attack technique that involves capturing and analyzing network traffic that contains sensitive information, such as passwords, credit card numbers, bank account details, etc., in order to use them for malicious purposes. This type of attack does not exploit an inherent security weakness in an Internet firewall, but rather exploits insecure or unencrypted network communication protocols or channels. A firewall cannot prevent packets from being intercepted and viewed by unauthorized parties, unless it has some mechanisms to encrypt or obfuscate the network traffic or to authenticate the source and destination of the traffic. However, a firewall cannot protect packets from being modified or tampered with by other means, such as man-in-the-middle attacks, replay attacks, etc.

  References: ISACA CISA Review Manual 27th Edition, page 300