CISA Certified Information Systems Auditor – Question1355

An organization outsourced its IS functions. To meet its responsibility for disaster recovery, the organization should:

A.
delegate evaluation of disaster recovery to internal audit.
B. delegate evaluation of disaster recovery to a third party.
C. discontinue the maintenance of the disaster recovery plan (DRP).
D. coordinate disaster recovery administration with the outsourcing vendor.

Correct Answer: D