Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. ISACA
  3. CISA

ISACA CISA Exam (page: 52)
ISACA Certified Information Systems Auditor
Updated on: 30-Dec-2025

Viewing Page 52 of 366
CISA PDF 1823 Questions

A chief information officer (CIO) has asked an IS auditor to implement several security controls for an organization's IT processes and systems. The auditor should:

  1. refuse due to independence issues.
  2. communicate the conflict of interest to audit management.
  3. perform the assignment and future audits with the due professional care.
  4. obtain approval from executive management for the implementation.

Answer(s): B



An algorithm in an email program analyzes traffic to quarantine emails identified as spam. The algorithm in the program is BEST characterized as which type of control?

  1. Detective
  2. Directive
  3. Preventive
  4. Corrective

Answer(s): C



During the implementation of a new system, an IS auditor must assess whether certain automated calculations comply with the regulatory requirements. Which of the following is the BEST way to obtain this assurance?

  1. Re-perform the calculation with audit software.
  2. Review the source code related to the calculation.
  3. Review sign-off documentation.
  4. Inspect user acceptance test (UAT) results.

Answer(s): A



When testing the adequacy of tape backup procedures, which step BEST verifies that regularly scheduled backups are timely and run to completion?

  1. Reviewing a sample of system-generated backup logs
  2. Interviewing key personnel involved in the backup process
  3. Observing the execution of a daily backup run
  4. Evaluating the backup policies and procedures

Answer(s): A



During the planning stage of a compliance audit, an IS auditor discovers that a bank's inventory of compliance requirements does not include recent regulatory changes related to managing data risk. What should the auditor do FIRST?

  1. Ask management why the regulatory changes have not been included.
  2. Report the missing regulatory updates to the chief information officer (CIO).
  3. Discuss potential regulatory issues with the legal department.
  4. Exclude recent regulatory changes from the audit scope.

Answer(s): A



Viewing Page 52 of 366



Share your comments for ISACA CISA exam with other users:

Mike 8/20/2023 5:12:00 PM

the exam dumps are helping me get a solid foundation on the practical techniques and practices needed to be successful in the auditing world.
UNITED STATES


Sam 8/31/2023 10:32:00 AM

not bad but you question database from isaca
MALAYSIA


Deno 10/25/2023 1:14:00 AM

i failed the cisa exam today. but i have found all the questions that were on the exam to be on this site.
Anonymous