00:00

QUESTION 26

- (Exam Topic 3)
An organization is disposing of a system containing sensitive data and has deleted all files from the hard disk. An IS auditor should be concerned because:

Correct Answer: B

QUESTION 27

- (Exam Topic 2)
Which of the following provides the MOST assurance over the completeness and accuracy ol loan application processing with respect to the implementation ol a new system?

Correct Answer: B

QUESTION 28

- (Exam Topic 4)
Which of the following should be done FIRST to minimize the risk of unstructured data?

Correct Answer: A
Based on the information provided, the first step to minimize the risk of unstructured data should be to A: Identify repositories of unstructured data. Unstructured data can present a significant security risk if not managed properly, so it is important to identify where it is stored and who has access to it. Once the repositories of unstructured data have been identified, additional steps can be taken to protect it, such as implementing strong encryption and user access controls, and purchasing tools to analyze it.

QUESTION 29

- (Exam Topic 1)
What is BEST for an IS auditor to review when assessing the effectiveness of changes recently made to processes and tools related to an organization's business continuity plan (BCP)?

Correct Answer: A

QUESTION 30

- (Exam Topic 2)
An IS auditor learns the organization has experienced several server failures in its distributed environment. Which of the following is the BEST recommendation to limit the potential impact of server failures in the future?

Correct Answer: B