CISA Certified Information Systems Auditor – Question0135

An IS auditor has been asked to assess the security of a recently migrated database system that contains personal and financial data for a bank’s customers. Which of the following controls is MOST important for the auditor to confirm it in place?

A.
The default configurations have been changed.
B. All tables in the database are normalized.
C. The service port used by the database server has been changed.
D. The default administration account is used after changing the account password.

Correct Answer: B