CISA Certified Information Systems Auditor – Question1915 - CISA Certified Information Systems Auditor

Which of the following refers to the collection of policies and procedures for implementing controls capable of restricting access to computer software and data files?

A. Binary access control
B. System-level access control
C. Logical access control
D. Physical access control
E. Component access control
F. None of the choices.

Correct Answer: C

Explanation:

Explanation:
Logical access control is about the use of a collection of policies, procedures, and controls to restrict access to computer software and data files.
Such control system should provide reasonable assurance that an organization’s objectives are being properly achieved securely and reliably.