CISA Certified Information Systems Auditor – Question2658

Which of the following methods should be used to effectively erase sensitive data from portable storage devices that are to be reused?

A. Formatting the portable device
B. Using media sanitization software
C. Overwriting the sensitive data
D. Exposing the portable device to a magnetic field

Correct Answer: C

CISA Certified Information Systems Auditor – Question2657

Attribute sampling is BEST suited to estimate:

A. compliance with approved procedures.
B. the true monetary value of a population.
C. the total error amount in the population.
D. whether a recorded balance is within limits of materiality.

Correct Answer: D

CISA Certified Information Systems Auditor – Question2656

Which of the following is the BEST source of information for assessing the effectiveness of IT process monitoring?

A. Participative management techniques
B. Quality assurance (QA) reviews
C. Performance data
D. Real-time audit software

Correct Answer: D

CISA Certified Information Systems Auditor – Question2655

Due to the cost restrains, a company defers the replacement of hardware supporting core application. Which of the following represents the GREATEST risk?

A. Maintenance costs may rise.
B. Future upgrades may not be possible.
C. Systems availability may suffer.
D. Eventual replacement may be more expensive.

Correct Answer: C

CISA Certified Information Systems Auditor – Question2654

Which of the following would BEST detect that a distributed-denial-of-service attack (DDoS) is occurring?

A. Server crashes
B. Automated monitoring of logs
C. Penetration testing
D. Customer service complaints

Correct Answer: B

CISA Certified Information Systems Auditor – Question2653

The PRIMARY benefit of using secure shell (SSH) to access a server on a network is that it:

A. provides better session reliability.
B. prevents man-in-the-middle attacks.
C. provides confidentiality of transmitted data.
D. facilitates communication across platforms.

Correct Answer: C

CISA Certified Information Systems Auditor – Question2652

Reorganization of databases is undertaken PRIMARILY to:

A. reduce backout and recovery times.
B. eliminate duplicates and perform data backup.
C. reduce simultaneous update time and index validation.
D. improve data access and retrieval times.

Correct Answer: D

CISA Certified Information Systems Auditor – Question2651

To ensure the integrity of a recovered database, which of the following would be MOST useful?

A. Before-and-after transaction images
B. Database defragmentation tools
C. A copy of the data dictionary
D. Application transaction logs

Correct Answer: A

CISA Certified Information Systems Auditor – Question2650

A sales representative is reviewing the organization’s feedback blog and gets redirected to a site that sells illegal prescription drugs. The blog site is MOST likely susceptible to which of the following types of attacks?

A. Directory harvesting
B. SQL injection
C. Cross-site scripting
D. Phishing attack.

Correct Answer: C

CISA Certified Information Systems Auditor – Question2649

Nonrepudiation of the client for e-commerce transactions is accomplished through which of the following control mechanisms?

A. Password security
B. Internet protocol (IP) address verification
C. Public key infrastructure (PKI)
D. Secure Sockets Layer (SSL)

Correct Answer: C

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.