Question 141
In reviewing the project timeline for a significant application software development project the IS auditor notes that no time was allocated for the design and performance of program code unit tests. Which of the following should (he auditor recommend?
Question 142
Which significant risk is introduced by running the file transfer protocol (FTP) service on a server in a demilitarized zone (DMZ)?
Question 143
During an audit of a business continuity plan (BCP), an IS auditor found that, although all departments were
housed in the same building, each department had a separate BCP. The IS auditor recommended that the
BCPs be reconciled. Which of the following areas should be reconciled FIRST?
Question 144
An IS auditor should expect the responsibility for authorizing access rights to production data and systems to be entrusted to the:
Question 145
IT control objectives are useful to IS auditors, as they provide the basis for understanding the: