The latest ISACA CISA (Certified Information Systems Auditor) certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the ISACA CISA exam and earn ISACA CISA certification.
Table of Contents
- CISA Question 1151
- Question
- Answer
- Explanation
- CISA Question 1152
- Question
- Answer
- Explanation
- CISA Question 1153
- Question
- Answer
- Explanation
- CISA Question 1154
- Question
- Answer
- Explanation
- CISA Question 1155
- Question
- Answer
- Explanation
- CISA Question 1156
- Question
- Answer
- Explanation
- CISA Question 1157
- Question
- Answer
- Explanation
- CISA Question 1158
- Question
- Answer
- Explanation
- CISA Question 1159
- Question
- Answer
- Explanation
- CISA Question 1160
- Question
- Answer
- Explanation
CISA Question 1151
Question
Library control software restricts source code to:
A. Read-only access
B. Write-only access
C. Full access
D. Read-write access
Answer
A. Read-only access
Explanation
Library control software restricts source code to read-only access.
CISA Question 1152
Question
Obtaining user approval of program changes is very effective for controlling application changes and maintenance. True or false?
A. True
B. False
Answer
A. True
Explanation
Obtaining user approval of program changes is very effective for controlling application changes and maintenance.
CISA Question 1153
Question
Although BCP and DRP are often implemented and tested by middle management and end users, the ultimate responsibility and accountability for the plans remain with executive management, such as the _______________________. (fill-in-the-blank)
A. Security administrator
B. Systems auditor
C. Board of directors
D. Financial auditor
Answer
C. Board of directors
Explanation
Although BCP and DRP are often implemented and tested by middle management and end users, the ultimate responsibility and accountability for the plans remain with executive management, such as the board of directors.
CISA Question 1154
Question
Any changes in systems assets, such as replacement of hardware, should be immediately recorded within the assets inventory of which of the following?
A. IT strategic plan
B. Business continuity plan
C. Business impact analysis
D. Incident response plan
Answer
B. Business continuity plan
Explanation
Any changes in systems assets, such as replacement of hardware, should be immediately recorded within the assets inventory of a business continuity plan.
CISA Question 1155
Question
Of the three major types of off-site processing facilities, what type is often an acceptable solution for preparing for recovery of noncritical systems and data?
A. Cold site
B. Hot site
C. Alternate site
D. Warm site
Answer
A. Cold site
Explanation
A cold site is often an acceptable solution for preparing for recovery of noncritical systems and data.
CISA Question 1156
Question
With the objective of mitigating the risk and impact of a major business interruption, a disaster recovery plan should endeavor to reduce the length of recovery time necessary, as well as costs associated with recovery. Although DRP results in an increase of pre-and post-incident operational costs, the extra costs are more than offset by reduced recovery and business impact costs. True or false?
A. True
B. False
Answer
A. True
Explanation
With the objective of mitigating the risk and impact of a major business interruption, a disaster- recovery plan should endeavor to reduce the length of recovery time necessary and the costs associated with recovery. Although DRP results in an increase of pre-and post-incident operational costs, the extra costs are more than offset by reduced recovery and business impact costs.
CISA Question 1157
Question
Of the three major types of off-site processing facilities, what type is characterized by at least providing for electricity and HVAC?
A. Cold site
B. Alternate site
C. Hot site
D. Warm site
Answer
A. Cold site
Explanation
Of the three major types of off-site processing facilities (hot, warm, and cold), a cold site is characterized by at least providing for electricity and HVAC. A warm site improves upon this by providing for redundant equipment and software that can be made operational within a short time.
CISA Question 1158
Question
What influences decisions regarding criticality of assets?
A. The business criticality of the data to be protected
B. Internal corporate politics
C. The business criticality of the data to be protected, and the scope of the impact upon the organization as a whole
D. The business impact analysis
Answer
C. The business criticality of the data to be protected, and the scope of the impact upon the organization as a whole
Explanation
Criticality of assets is often influenced by the business criticality of the data to be protected and by the scope of the impact upon the organization as a whole. For example, the loss of a network backbone creates a much greater impact on the organization as a whole than the loss of data on a typical user’s workstation.
CISA Question 1159
Question
Which type of major BCP test only requires representatives from each operational area to meet to review the plan?
A. Parallel
B. Preparedness
C. Walk-thorough
D. Paper
Answer
C. Walk-thorough
Explanation
Of the three major types of BCP tests (paper, walk-through, and preparedness), a walk-through test requires only that representatives from each operational area meet to review the plan.
CISA Question 1160
Question
Which of the following typically focuses on making alternative processes and resources available for transaction processing?
A. Cold-site facilities
B. Disaster recovery for networks
C. Diverse processing
D. Disaster recovery for systems
Answer
D. Disaster recovery for systems
Explanation
Disaster recovery for systems typically focuses on making alternative processes and resources available for transaction processing.