Isaca CISA Online Practice Questions and Exam Preparation

Isaca CISA Online Questions & Answers

• Question 1881:

  Performance monitoring tools report that servers are consistently above the recommended utilization capacity. Which of the following is the BEST recommendation of the IS auditor?

  A. Develop a capacity plan based on usage projections.
  B. Deploy load balancers.
  C. Monitor activity logs.
  D. Add servers until utilization is at target capacity.
  A. Develop a capacity plan based on usage projections.

  ---

  Explanation

• Question 1882:

  Which of the following security measures is MOST important for protecting Internet of Things (IoT) devices from potential cyberattacks?

  A. Logging and monitoring network traffic
  B. Confirming firmware compliance to current security requirements
  C. Changing default passwords
  D. Reviewing and updating the network diagram on a regular basis
  C. Changing default passwords

  ---

  Explanation

  Explanation

  Changing default passwords is a critical security measure for IoT devices. Many IoT devices come with default credentials that are widely known and easily exploitable by attackers. Ensuring that these default passwords are changed to

  strong, unique passwords significantly reduces the risk of unauthorized access. While logging, monitoring, firmware compliance, and network diagram reviews are important security practices, they are secondary to the fundamental step of

  securing device access through strong authentication.

  References:

  ISACA CISA Review Manual, 28th Edition, Chapter 5: Protection of Information Assets.

• Question 1883:

  When determining which IS audits to conduct during the upcoming year, internal audit has received a request from management for multiple audits of the contract division due to fraud findings during the prior year.

  Which of the following is the BEST basis for selecting the audits to be performed?

  A. Select audits based on management's suggestion
  B. Select audits based on the skill sets of the IS auditors.
  C. Select audits based on collusion risk
  D. Select audits based on an organizational risk assessment.
  D. Select audits based on an organizational risk assessment.

  ---

  Explanation

• Question 1884:

  A 5-year audit plan provides for general audits every year and application audits on alternating years. To achieve higher efficiency, the IS audit manager would MOST likely:

  A. proceed with the plan and integrate all new applications.
  B. alternate between control self-assessment (CSA) and general audits every year.
  C. implement risk assessment criteria to determine audit priorities.
  D. have control self-assessments (CSAs) and formal audits of applications on alternating years.
  D. have control self-assessments (CSAs) and formal audits of applications on alternating years.

  ---

  Explanation

• Question 1885:

  Which of the following should be the FIRST step when conducting an IT risk assessment?

  A. Identify potential threats.
  B. Assess vulnerabilities.
  C. Identify assets to be protected.
  D. Evaluate controls in place.
  C. Identify assets to be protected.

  ---

  Explanation

  The first step when conducting an IT risk assessment is to identify assets to be protected, which include hardware, software, data, processes, people, and facilities that support the business objectives and operations of an organization. Identifying assets to be protected helps to establish the scope and boundaries of the risk assessment, as well as the value and criticality of each asset. Identifying potential threats, assessing vulnerabilities, and evaluating controls in place are subsequent steps in the risk assessment process that depend on the identification of assets to be protected.

  References: CISA Review Manual (Digital Version), Chapter 2: Governance and Management of IT, Section 2.3: IT Risk Management

• Question 1886:

  An organization is implementing the use of mobile devices that will connect to sensitive corporate applications. Which of the following is the BEST recommendation to mitigate risk of data leakage?

  A. Remote data wipe
  B. GPS tracking software
  C. Encrypted RFID tags
  D. Data encryption
  D. Data encryption

  ---

  Explanation

• Question 1887:

  When auditing IT organizational structure, which of the following findings presents the GREATEST risk to an organization?

  A. Significantly higher turnover
  B. Lack of customer satisfaction surveys
  C. Aging staff
  D. Increase in the frequency of software upgrades
  A. Significantly higher turnover

  ---

  Explanation

  Explanation

  High employee turnover (A) poses the greatest risk because it leads to knowledge loss, operational disruptions, and potential security risks from departing employees.A constantly changing workforce can also impact compliance, training, and

  overall IT stability.

  Other options:

  Lack of customer satisfaction surveys (B)is a business issue but not a critical IT risk. Aging staff (C)may be a long-term risk but does not have an immediate impact. Frequent software upgrades (D)can be beneficial if managed correctly.

  ISACA CISA Review Manual, IT Governance and Management of IT

• Question 1888:

  An IS auditor is reviewing the backup procedures in an organization that has high volumes of data with frequent changes to transactions. Which of the following is the BEST backup scheme to recommend given the need for a shorter restoration time in the event of a disruption?

  A. Differential backup
  B. Full backup
  C. Incremental backup
  D. Mirror backup
  D. Mirror backup

  ---

  Explanation

  A mirror backup is a type of backup that creates an exact copy of the source data to the destination, without using any compression or encryption. A mirror backup is the best backup scheme to recommend given the need for a shorter restoration time in the event of a disruption, because it allows for the fastest and easiest recovery of data. A mirror backup does not store any previous versions of the files, so it only reflects the current state of the source data. Therefore, a mirror backup requires less storage space than a full backup, but more than an incremental or differential backup. A differential backup is a type of backup that stores the changes made to the source data since the last full backup. A differential backup requires less storage space and time than a full backup, but more than an incremental backup. However, a differential backup also requires more time and resources to restore than a mirror or full backup, because it needs to combine the last full backup and the latest differential backup to recover the data. A full backup is a type of backup that copies all the files and folders from the source data to the destination, regardless of whether they have changed or not. A full backup provides the most complete protection of data and the simplest recovery process, but it also requires the most storage space and time to perform. A full backup is usually done periodically, such as weekly or monthly, and followed by incremental or differential backups. An incremental backup is a type of backup that stores the changes made to the source data since the last backup, whether it was a full or an incremental backup. An incremental backup requires the least storage space and time to perform, but it also requires the most time and resources to restore, because it needs to combine all the previous backups in chronological order to recover the data.

• Question 1889:

  Which of the following is the BEST reason for an IS auditor to emphasize to management the importance of using an IT governance framework?

  A. Frameworks enable IT benchmarks against competitors
  B. Frameworks can be tailored and optimized for different organizations
  C. Frameworks help facilitate control self-assessments (CSAs)
  D. Frameworks help organizations understand and manage IT risk
  B. Frameworks can be tailored and optimized for different organizations

  ---

  Explanation

  The best reason for an IS auditor to emphasize to management the importance of using an IT governance framework is that frameworks can be tailored and optimized for different organizations. An IT governance framework is a set of principles, guidelines, and processes that help an organization align its IT strategy with its business goals, manage IT risks and performance, and deliver value from IT investments. An IT governance framework can be adapted and customized to suit the specific needs, context, and culture of each organization, taking into account factors such as size, industry, maturity, objectives, and stakeholders. An IT governance framework can also help an organization adopt best practices and standards from various sources, such as COBIT2, ITIL3, ISO/IEC 200004, and others. The other options are not as good as option B, as they may not capture the full scope or benefits of using an IT governance framework. Frameworks enable IT benchmarks against competitors, but this is not the main purpose or advantage of using an IT governance framework. Frameworks help facilitate control self-assessments (CSAs), but this is only one aspect or tool of an IT governance framework. Frameworks help organizations understand and manage IT risk, but this is also only one outcome or objective of an IT governance framework.

  References:

  1: What is ITIL? Your guide to the IT Infrastructure Library | CIO

  2: IT Governance Framework | Components | Framework | Terminology - EDUCBA

  3: IT Governance: Definitions, Frameworks and Planning - ProjectManager

  4: What Is IT Governance? - Definition from Techopedia

  5: What is IT Governance? A formal way to align IT and business strategy | CIO

  6: What Is IT Governance? - Definition from WhatIs.com

  7: ISO/IEC 20000 Information Technology Service Management Systems Standard - ISO/IEC 20000 Portal

  8: COBIT | Control Objectives for Information Technologies | ISACA

• Question 1890:

  During a follow-up audit, it was found that a complex security vulnerability of low risk was not resolved within the agreed-upon timeframe. IT has stated that the system with the identified vulnerability is being replaced and is expected to be fully functional in two months Which of the following is the BEST course of action?

  A. Require documentation that the finding will be addressed within the new system
  B. Schedule a meeting to discuss the issue with senior management
  C. Perform an ad hoc audit to determine if the vulnerability has been exploited
  D. Recommend the finding be resolved prior to implementing the new system
  A. Require documentation that the finding will be addressed within the new system

  ---

  Explanation

  Requiring documentation that the finding will be addressed within the new system is the best course of action for a follow-up audit. An IS auditor should obtain evidence that the complex security vulnerability of low risk will be resolved in the new system and that there is a reasonable timeline for its implementation. The other options are not appropriate courses of action, as they may be too costly, time-consuming, or impractical for a low-risk finding.

  References: CISA Review Manual (Digital Version), Chapter 2, Section 2.5.31 CISA Review Questions, Answers and Explanations Database, Question ID 209