Latest CISA Exam Premium Dumps provide by TrainingQuiz.com to help you Passing CISA Exam! TrainingQuiz.com offers the updated CISA exam dumps, the TrainingQuiz.com CISA exam questions has been updated to correct Answer. Get the latest TrainingQuiz.com CISA pdf dumps with Exam Engine here:
(1588 Q&As Dumps, 40%OFF Special Discount: DumpsDB)
The PRIMARY reason for an IS auditor to use data analytics techniques is to reduce which type of audit risk?
Correct Answer: C
Section: The process of Auditing Information System
Question 27
Codes from exploit programs are frequently reused in:
Correct Answer: E
Section: Protection of Information Assets Explanation: "The term ""exploit"" generally refers to small programs designed to take advantage of a software flaw that has been discovered, either remote or local. The code from the exploit program is frequently reused in trojan horses and computer viruses. In some cases, a vulnerability can lie in a certain programs processing of a specific file type, such as a non-executable media file."
Question 28
Which of the following process consist of identification and selection of data from the imaged data set in computer forensics?
Correct Answer: D
Section: Protection of Information Assets Explanation: Extraction is the process of identification and selection of data from the imaged data set. This process should include standards of quality, integrity and reliability. The extraction process includes software used and media where an image was made. The extraction process could include different sources such as system logs, firewall logs, audit trails and network management information. For CISA exam you should know below mentioned key elements of computer forensics during audit planning. Data Protection -To prevent sought-after information from being altered, all measures must be in place. It is important to establish specific protocol to inform appropriate parties that electronic evidence will be sought and not destroy it by any means. Data Acquisition - All information and data required should transferred into a controlled location; this includes all types of electronic media such as fixed disk drives and removable media. Each device must be checked to ensure that it is write protected. This may be achieved by using device known as write blocker. Imaging -The Imaging is a process that allows one to obtain bit-for bit copy of a data to avoid damage of original data or information when multiple analyses may be performed. The imaging process is made to obtain residual data, such as deleted files, fragments of deleted files and other information present, from the disk for analysis. This is possible because imaging duplicates the disk surface, sector by sector. Extraction - This process consists of identification and selection of data from the imaged data set. This process should include standards of quality, integrity and reliability. The extraction process includes software used and media where an image was made. The extraction process could include different sources such as system logs, firewall logs, audit trails and network management information. Interrogation -Integration is used to obtain prior indicators or relationships, including telephone numbers, IP addresses, and names of individuals from extracted data. Investigation/ Normalization -This process converts the information extracted to a format that can be understood by investigator. It includes conversion of hexadecimal or binary data into readable characters or a format suitable for data analysis tool. Reporting- The information obtained from computer forensic has limited value when it is not collected and reported in proper way. When an IS auditor writes report, he/she must include why the system was reviewed, how the computer data were reviewed and what conclusion were made from analysis. The report should achieve the following goals Accurately describes the details of an incident. Be understandable to decision makers. Be able to withstand a barrage of legal security Be unambiguous and not open to misinterpretation. Be easily referenced Contains all information required to explain conclusions reached Offer valid conclusions, opinions or recommendations when needed Be created in timely manner. The following were incorrect answers: Investigation/ Normalization -This process converts the information extracted to a format that can be understood by investigator. It includes conversion of hexadecimal or binary data into readable characters or a format suitable for data analysis tool. Interrogation -Integration is used to obtain prior indicators or relationships, including telephone numbers, IP addresses, and names of individuals from extracted data. Reporting -The information obtained from computer forensic has limited value when it is not collected and reported in proper way. When an IS auditor writes report, he/she must include why the system was reviewed, how the computer data were reviewed and what conclusion were made from analysis. Explanation: CISA review manual 2014 Page number 367 and 368
Question 29
What is a primary high-level goal for an auditor who is reviewing a system development project?
Correct Answer: C
Explanation/Reference: A primary high-level goal for an auditor who is reviewing a systems-development project is to ensure that business objectives are achieved. This objective guides all other systems development objectives.
Question 30
An IS auditor notes that help desk personnel are required to make critical decisions during major service disruptions. Which of the following is the auditor's BEST recommendation to address this situation?
