CISA Certified Information Systems Auditor – Question0134

An IS auditor is reviewing the upgrading of an operating system. Which of the following would be the GREATEST audit concern?

A.
The lack of release notes
B. The lack of change control
C. The lack of malware protection
D. The lack of activity logging

Correct Answer: B