CISA Certified Information Systems Auditor – Question2397

What must an IS auditor understand before performing an application audit?

A.
The potential business impact of application risks.
B. Application risks must first be identified.
C. Relative business processes.
D. Relevant application risks.

Correct Answer: C

Explanation:

Explanation:
An IS auditor must first understand relative business processes before performing an application audit.