Test-Questions.com
Exam Prep With Quizzes
 Certified Information Systems Auditor (CISA) 
cisa free questions isaca cisa exam questions

 

Q:1-To aid management in achieving IT and business alignment, an IS auditor should recommend the use of:
Mark one answer:
control self-assessments.
a business impact analysis.
an IT balanced scorecard.
business process reengineering.

Q:2-In an organization, the responsibilities for IT security are clearly assigned and enforced and an IT security risk and impact analysis is consistently performed. This represents which level of ranking in the information security governance maturity model?
Mark one answer:
Optimized
Managed
Defined
Repeatable

Q:3-When reviewing IS strategies, an IS auditor can BEST assess whether IS strategy supports the organizations' business objectives by determining if IS:
Mark one answer:
has all the personnel and equipment it needs.
plans are consistent with management strategy.
uses its equipment and personnel efficiently and effectively.
has sufficient excess capacity to respond to changing directions.

Q:4-An IS auditor reviewing an organization's IT strategic plan should FIRST review:
Mark one answer:
the existing IT environment.
the business plan.
the present IT budget.
current technology trends.

Q:5-Which of the following would an IS auditor consider to be the MOST important when evaluating an organization's IS strategy? That it:
Mark one answer:
has been approved by line management.
does not vary from the IS department's preliminary budget.
complies with procurement procedures.
supports the business objectives of the organization.

test-questions.com

Q:6-Which of the following goals would you expect to find in an organization's strategic plan?
Mark one answer:
Test a new accounting package.
Perform an evaluation of information technology needs.
Implement a new project planning system within the next 12 months.
Become the supplier of choice for the product offered.

Q:7-Which of the following would an IS auditor consider the MOST relevant to short-term planning for an IS department?
Mark one answer:
Allocating resources
Keeping current with technology advances
Conducting control self-assessment
Evaluating hardware needs

Q:8-In reviewing the IS short-range (tactical) plan, an IS auditor should determine whether:
Mark one answer:
there is an integration of IS and business staffs within projects.
there is a clear definition of the IS mission and vision.
a strategic information technology planning methodology is in place.
the plan correlates business objectives to IS goals and objectives.

Q:9-To support an organization's goals, an IS department should have:
Mark one answer:
a low-cost philosophy.
long- and short-range plans.
leading-edge technology.
plans to acquire new hardware and software.

Q:10-Which of the following is normally a responsibility of the chief security officer (CSO)?
Mark one answer:
Periodically reviewing and evaluating the security policy
Executing user application and software testing and evaluation
Granting and revoking user access to IT resources
Approving access to data and applications

❌Report wrong answer

cisa online questions free cisa practice questions

Test-Questions.com CISA Practice Questions
Unlock 790 Q's with Code

 ISACA CISA 
Total Questions: 790 
Free        Demo        Premium