Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. ISACA
  3. CISA

ISACA CISA Exam (page: 40)
ISACA Certified Information Systems Auditor
Updated on: 25-Dec-2025

Viewing Page 40 of 366
CISA PDF 1823 Questions

A data breach has occurred due to malware. Which of the following should be the FIRST course of action?

  1. Shut down the affected systems.
  2. Quarantine the impacted systems.
  3. Notify customers of the breach.
  4. Notify the cyber insurance company

Answer(s): B



An online retailer is receiving customer complaints about receiving different items from what they ordered on the organization's website. The root cause has been traced to poor data quality. Despite efforts to clean erroneous data from the system, multiple data quality issues continue to occur. Which of the following recommendations would be the BEST way to reduce the likelihood of future occurrences?

  1. Outsource data cleansing activities to reliable third parties.
  2. Assign responsibility for improving data quality.
  3. Implement business rules to validate employee data entry.
  4. Invest in additional employee training for data entry.

Answer(s): C



During an operational audit of a biometric system used to control physical access, which of the following should be of GREATEST concern to an IS auditor?

  1. False positives
  2. User acceptance of biometrics
  3. False negatives
  4. Lack of biometric training

Answer(s): A



During a software acquisition review, an IS auditor should recommend that there be a software escrow agreement when:

  1. the product is new in the market.
  2. the deliverables do not include the source code.
  3. there is no service level agreement (SLA).
  4. the estimated life for the product is less than 3 years.

Answer(s): B



When reviewing a data classification scheme, it is MOST important for an IS auditor to determine if:

  1. the information owner is required to approve access to the asset.
  2. senior IT managers are identified as information owners.
  3. the security criteria are clearly documented for each classification.
  4. each information asset is assigned to a different classification.

Answer(s): C



Viewing Page 40 of 366



Share your comments for ISACA CISA exam with other users:

Mike 8/20/2023 5:12:00 PM

the exam dumps are helping me get a solid foundation on the practical techniques and practices needed to be successful in the auditing world.
UNITED STATES


Sam 8/31/2023 10:32:00 AM

not bad but you question database from isaca
MALAYSIA


Deno 10/25/2023 1:14:00 AM

i failed the cisa exam today. but i have found all the questions that were on the exam to be on this site.
Anonymous