Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. ISACA
  3. CISA

ISACA CISA Exam (page: 31)
ISACA Certified Information Systems Auditor
Updated on: 25-Dec-2025

Viewing Page 31 of 366
CISA PDF 1823 Questions

Which of the following is MOST important for an IS auditor to review when assessing the integrity of encryption controls for data at rest?

  1. Protection of encryption keys
  2. Encryption of test data
  3. Frequency of encryption key changes
  4. Length of encryption keys

Answer(s): A



An IS audit manager finds that data manipulation logic developed by the audit analytics team leads to incorrect conclusions. This inaccurate logic is MOST likely an indication of which of the following?

  1. The team's poor understanding of the business process being analyzed
  2. Incompatibility between data volume and analytics processing capacity
  3. Poor change controls over data sets collected from the business
  4. Poor security controls that grant inappropriate access to analysis produced

Answer(s): A



Which of the following is the BEST control to mitigate the malware risk associated with an instant messaging (IM) system?

  1. Blocking external IM traffic
  2. Blocking attachments in IM
  3. Allowing only corporate IM solutions
  4. Encrypting IM traffic

Answer(s): C



An IS auditor noted that a change to a critical calculation was placed into the production environment without being tested. Which of the following is the BEST way to obtain assurance that the calculation functions correctly?

  1. Check regular execution of the calculation batch job.
  2. Interview the lead system developer.
  3. Obtain post-change approval from management.
  4. Perform substantive testing using computer-assisted audit techniques (CAATs).

Answer(s): D



The use of cookies constitutes the MOST significant security threat when they are used for:

  1. obtaining a public key from a certification authority (CA).
  2. forwarding email and Internet Protocol (IP) addresses.
  3. authenticating using username and password.
  4. downloading files from the host server.

Answer(s): C



Viewing Page 31 of 366



Share your comments for ISACA CISA exam with other users:

Mike 8/20/2023 5:12:00 PM

the exam dumps are helping me get a solid foundation on the practical techniques and practices needed to be successful in the auditing world.
UNITED STATES


Sam 8/31/2023 10:32:00 AM

not bad but you question database from isaca
MALAYSIA


Deno 10/25/2023 1:14:00 AM

i failed the cisa exam today. but i have found all the questions that were on the exam to be on this site.
Anonymous