CISA Certified Information Systems Auditor – Question1945

When planning an audit, it is acceptable for an IS auditor to rely on a third-party provider’s external audit report on service level management when the:

A.
report was released within the last 12 months.
B. scope and methodology meet audit requirements.
C. service provider is independently certified and accredited.
D. report confirms that service levels were not violated.

Correct Answer: A