CISA Certified Information Systems Auditor – Question0579

Which of the following is the PRIMARY risk when business units procure IT assets without IT involvement?

A.
Corporate procurement standards are not followed.
B. The business units want IT to be responsible for maintenance costs.
C. Data security requirements are not considered.
D. System inventory becomes inaccurate.

Correct Answer: A