2026年国际注册信息系统审计师(CISA)资格考试(英文版)能力提高训练题及答案五
2025/12/21
来源:易考吧
导语
2026年国际注册信息系统审计师(CISA)资格考试(英文版)能力提高训练题及答案五,更多相关资讯请继续查看易考吧国际内审考试用书
1). An IS auditors reviewing the perimeter security design of a network.Which of the following provides the GREATEST assurance that bothincoming and outgoing internet traffic is controlled?( )
A.Intrusion detection system (IDS)
B.Load batancer
C.Security information and event management (SIEM) system
D.Stateful firewall
正确答案:D
2). Which of the following should be identified FIRST during the risk assessment process? ( )
A.Vulnerability
B.Legal requirements
C.Existing controls
D.Information assets
正确答案:A
3). Which of the following is the BEST indication to an IS auditor that management′s post-implementation review was effective? ( )
A.Business and IT stakeholders participated in the post- implementation review
B.Lessons learned were documented and applied
C.Internal audit follow-up was completed without any findings
D.Post- implementation review is a formal phase in the system development l ife cycle (SDLC)
正确答案:B
......
1). An IS auditors reviewing the perimeter security design of a network.Which of the following provides the GREATEST assurance that bothincoming and outgoing internet traffic is controlled?( )
A.Intrusion detection system (IDS)
B.Load batancer
C.Security information and event management (SIEM) system
D.Stateful firewall
正确答案:D
2). Which of the following should be identified FIRST during the risk assessment process? ( )
A.Vulnerability
B.Legal requirements
C.Existing controls
D.Information assets
正确答案:A
3). Which of the following is the BEST indication to an IS auditor that management′s post-implementation review was effective? ( )
A.Business and IT stakeholders participated in the post- implementation review
B.Lessons learned were documented and applied
C.Internal audit follow-up was completed without any findings
D.Post- implementation review is a formal phase in the system development l ife cycle (SDLC)
正确答案:B
......
