Learn why examining project change request logs is crucial during a post-implementation review of critical applications, ensuring effective change management and control procedures.
Table of Contents
Question
Which of the following should be done by an IS auditor during a post-implementation review of a critical application that has been operational for six months?
A. Test program system interfaces.
B. Verify the accuracy of data conversions.
C. Assess project management risk reports.
D. Examine project change request logs.
Answer
D. Examine project change request logs.
Explanation
Option A: Testing system interfaces is typically performed during the development and implementation phases, not post-implementation.
Option B: Data conversion accuracy is crucial during the initial implementation but less relevant after six months of operation.
Option C: Assessing project management risk reports is valuable during the planning and implementation stages, not after the application is operational.
Option D: Examining change request logs helps assess how changes were managed after go-live, ensuring proper control and adherence to change management procedures. This aligns with the purpose of a post-implementation review.
Isaca Certified Information Systems Auditor CISA certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Isaca Certified Information Systems Auditor CISA exam and earn Isaca Certified Information Systems Auditor CISA certification.