• Home
  • Blogs
  • Verified & Latest CISA Dump Q&As with Correct Answers [Q127-Q148]

Verified & Latest CISA Dump Q&As with Correct Answers [Q127-Q148]

Share

Verified & Latest CISA Dump Q&As with Correct Answers

Latest CISA dumps - Instant Download PDF

NEW QUESTION 127
Which of the following fourth generation language depends on self-contained database management systems?

  • A. Application generators
  • B. Query and report generator
  • C. Embedded database 4GLs
  • D. Relational database 4GL

Answer: C

Explanation:
Section: Information System Acquisition, Development and Implementation Explanation:
Embedded database 4GLsare depend on self-contained database management systems. These characteristics often makes them more user-friendly but also may lead to applications that are not integrated well with other product applications. Example includes FOCUS, RAMIS II and NOMAD 2.
For CISA exam you should know below mentioned types of 4GLs
Query and report generator - These specialize language can extract and produce reports. Recently more powerful language has been produced that can access database records, produce complex on-line output and be developed in an almost natural language.
Embedded database 4GLs - These depend on self-contained database management systems. These characteristics often makes them more user-friendly but also may lead to applications that are not integrated well with other product applications. Example includes FOCUS, RAMIS II and NOMAD 2.
Relational database 4GLs - These high level language products are usually an optional feature on vendor's DBMS product line. These allow the application developer to make better use of DBMS product, but they often are not end-user-oriented. Example include SQL+ MANTIS and NATURAL.
Application generators - These development tools generate lower level programming languages(3GL) such as COBOL and C. The application can be further tailored and customized. Data processing development personnel, not end user, use application generators.
The following were incorrect answers:
Query and report generator - These specialize language can extract and produce reports.
Relational database 4GLs - These high level language products are usually an optional feature on vendor's DBMS product line.
Application generators - These development tools generate lower level programming languages(3GL) such as COBOL and C.
Reference:
CISA review manual 2014 Page number 209

 

NEW QUESTION 128
Which of the following analytical methods would be MOST useful when trying to identify groups with similar behavior or characteristics in a large population?

  • A. Clustering
  • B. Correlation analysis
  • C. Deviation detection
  • D. Classification

Answer: B

 

NEW QUESTION 129
In computer forensic which of the following describe the process that converts the information extracted into a format that can be understood by investigator?

  • A. Interrogation
  • B. Reporting
  • C. Extraction
  • D. Investigation

Answer: D

Explanation:
Explanation/Reference:
Investigation is the process that converts the information extracted to a format that can be understood by investigator. It includes conversion of hexadecimal or binary data into readable characters or a format suitable for data analysis tool.
For CISA exam you should know below mentioned key elements of computer forensics during audit planning.
Data Protection -To prevent sought-after information from being altered, all measures must be in place. It is important to establish specific protocol to inform appropriate parties that electronic evidence will be sought and not destroy it by any means.
Data Acquisition - All information and data required should transferred into a controlled location; this includes all types of electronic media such as fixed disk drives and removable media. Each device must be checked to ensure that it is write protected. This may be achieved by using device known as write blocker.
Imaging -The Imaging is a process that allows one to obtain bit-for bit copy of a data to avoid damage of original data or information when multiple analyses may be performed. The imaging process is made to obtain residual data, such as deleted files, fragments of deleted files and other information present, from the disk for analysis. This is possible because imaging duplicates the disk surface, sector by sector.
Extraction - This process consist of identification and selection of data from the imaged data set. This process should include standards of quality, integrity and reliability. The extraction process includes software used and media where an image was made. The extraction process could include different sources such as system logs, firewall logs, audit trails and network management information.
Interrogation -Integration is used to obtain prior indicators or relationships, including telephone numbers, IP addresses, and names of individuals from extracted data.
Investigation/ Normalization -This process converts the information extracted to a format that can be understood by investigator. It includes conversion of hexadecimal or binary data into readable characters or a format suitable for data analysis tool.
Reporting- The information obtained from computer forensic has limited value when it is not collected and reported in proper way. When an IS auditor writes report, he/she must include why the system was reviewed, how the computer data were reviewed and what conclusion were made from analysis. The report should achieve the following goals Accurately describes the details of an incident.
Be understandable to decision makers.
Be able to withstand a barrage of legal security
Be unambiguous and not open to misinterpretation.
Be easily referenced
Contains all information required to explain conclusions reached
Offer valid conclusions, opinions or recommendations when needed
Be created in timely manner.
The following were incorrect answers:
Interrogation -Integration is used to obtain prior indicators or relationships, including telephone numbers, IP addresses, and names of individuals from extracted data.
Extraction - This process consist of identification and selection of data from the imaged data set. This process should include standards of quality, integrity and reliability.
Reporting -The information obtained from computer forensic has limited value when it is not collected and reported in proper way. When an IS auditor writes report, he/she must include why the system was reviewed, how the computer data were reviewed and what conclusion were made from analysis.
Following reference(s) were/was used to create this question:
CISA review manual 2014 Page number367 and 368

 

NEW QUESTION 130
During an audit of a payroll system, an IS auditor identifies that two employees share the same bank account. The auditor is concerned they may be ghost employees. Which of the following should the auditor do NEXT?

  • A. Draft a report with a finding that there may be ghost employees.
  • B. Advise payroll management to suspend both employees accounts until further investigated.
  • C. Conduct inquiries to determine whether the two employees have a relationship.
  • D. Notify the human resources executive immediately.

Answer: C

 

NEW QUESTION 131
Which of the following is MOST important to include in an organization's incident response plan to help prevent similar incidents from happening in the future?

  • A. Documentation of incident details
  • B. Containment and neutralization actions
  • C. Incident closure procedures
  • D. Post-incident review

Answer: D

 

NEW QUESTION 132
When reviewing procedures for emergency changes to programs, the IS auditor should verify that the procedures:

  • A. allow undocumented changes directly to the production library.
  • B. allow programmers permanent access to production programs.
  • C. allow changes, which will be completed using after-the-fact follow-up.
  • D. do not allow any emergency changes.

Answer: C

Explanation:
There may be situations where emergency fixes are required to resolve system problems. This involves the use of special logon IDs that grant programmers temporary access to production programs during emergency situations. Emergency changes should becompleted using after-thefact follow-up procedures, which ensure that normal procedures are retroactively applied; otherwise, production may be impacted. Changes made in this fashion should be held in an emergency library from where they can be moved to the production library, following the normal change management process. Programmers should not directly alter the production library nor should they be allowed permanent access to production programs.

 

NEW QUESTION 133
Which of the following is MOST likely to be included in computer operating procedures in a large data center?

  • A. Instructions for job scheduling
  • B. Procedures for resequencing source code
  • C. Guidance on setting security parameters
  • D. Procedures for utility configuration

Answer: A

Explanation:
Section: Governance and Management of IT

 

NEW QUESTION 134
An IS auditor inspected a windowless room containing phone switching and networking equipment and documentation binders. The room was equipped with two handheld fire extinguishers-one filled with CO2, the other filled with halon. Which ofthe following should be given the HIGHEST priority in the auditor's report?

  • A. Both fire suppression systems present a risk of suffocation when used in a closed room.
  • B. The CO2 extinguisher should be removed, because CO2 is ineffective for suppressing fires involving solid combustibles (paper).
  • C. Thehalon extinguisher should be removed because halon has a negative impact on the atmospheric ozone layer.
  • D. The documentation binders should be removed from the equipment room to reduce potential risks.

Answer: A

Explanation:
Protecting people's lives should always be of highest priority in fire suppression activities. COz and halon both reduce the oxygen ratio in the atmosphere, which can induce serious personal hazards, in many countries installing or refilling halon fire suppression systems is not allowed. Although COz and halon are effective and appropriate for fires involving synthetic combustibles and electrical equipment, they are nearly totally ineffective on solid combustibles (wood andpaper ). Although not of highest priority, removal of the documentation would probably reduce some of the risks.

 

NEW QUESTION 135
During an audit of a multinational bank's disposal process, an IS auditor notes several findings Which of the following should be the auditor's GREATEST concern?

  • A. Backup media are not reviewed before disposal
  • B. Degaussing is used instead of physical shredding.
  • C. Backup media are disposed before the end of the retention period.
  • D. Hardware is not destroyed by a certified vendor

Answer: C

 

NEW QUESTION 136
An IS auditor should know information about different network transmission media. Which of the following transmission media is used for short distance transmission?

  • A. Fiber Optics
  • B. Copper cable
  • C. Satellite Radio Link
  • D. Satellite Radio Link

Answer: B

Explanation:
Explanation/Reference:
Copper cable is very simple to install and easy to tap. It is used mostly for short distance and supports voice and data.
For your exam you should know below information about transmission media:
Copper Cable
Copper cable is very simple to install and easy to tap. It is used mostly for short distance and supports voice and data.
Copper has been used in electric wiring since the invention of the electromagnet and the telegraph in the
1820s.The invention of the telephone in 1876 created further demand for copper wire as an electrical conductor.
Copper is the electrical conductor in many categories of electrical wiring. Copper wire is used in power generation, power transmission, power distribution, telecommunications, electronics circuitry, and countless types of electrical equipment. Copper and its alloys are also used to make electrical contacts.
Electrical wiring in buildings is the most important market for the copper industry. Roughly half of all copper mined is used to manufacture electrical wire and cable conductors.
Copper Cable

Coaxial cable
Coaxial cable, or coax (pronounced 'ko.aks), is a type of cable that has an inner conductor surrounded by a tubular insulating layer, surrounded by a tubular conducting shield. Many coaxial cables also have an insulating outer sheath or jacket. The term coaxial comes from the inner conductor and the outer shield sharing a geometric axis. Coaxial cable was invented by English engineer and mathematician Oliver Heaviside, who patented the design in 1880.Coaxial cable differs from other shielded cable used for carrying lower-frequency signals, such as audio signals, in that the dimensions of the cable are controlled to give a precise, constant conductor spacing, which is needed for it to function efficiently as a radio frequency transmission line.
Coaxial cable is expensive and does not support many LAN's. It supports data and video.

Coaxial Cable
Fiber optics
An optical fiber cable is a cable containing one or more optical fibers that are used to carry light. The optical fiber elements are typically individually coated with plastic layers and contained in a protective tube suitable for the environment where the cable will be deployed. Different types of cable are used for different applications, for example long distance telecommunication, or providing a high-speed data connection between different parts of a building.
Fiber optics used for long distance, hard to splice, not vulnerable to cross talk and difficult to tap. It supports voice data, image and video.
Fiber Optics

Radio System
Radio systems are used for short distance, cheap and easy to intercept.
Radio is the radiation (wireless transmission) of electromagnetic signals through the atmosphere or free space.
Information, such as sound, is carried by systematically changing (modulating) some property of the radiated waves, such as their amplitude, frequency, phase, or pulse width. When radio waves strike an electrical conductor, the oscillating fields induce an alternating current in the conductor. The information in the waves can be extracted and transformed back into its original form.
Microwave radio system
Microwave transmission refers to the technology of transmitting information or energy by the use of radio waves whose wavelengths are conveniently measured in small numbers of centimeter; these are called microwaves.
Microwaves are widely used for point-to-point communications because their small wavelength allows conveniently-sized antennas to direct them in narrow beams, which can be pointed directly at the receiving antenna. This allows nearby microwave equipment to use the same frequencies without interfering with each other, as lower frequency radio waves do. Another advantage is that the high frequency of microwaves gives the microwave band a very large information-carrying capacity; the microwave band has a bandwidth 30 times that of all the rest of the radio spectrum below it. A disadvantage is that microwaves are limited to line of sight propagation; they cannot pass around hills or mountains as lower frequency radio waves can.
Microwave radio transmission is commonly used in point-to-point communication systems on the surface of the Earth, in satellite communications, and in deep space radio communications. Other parts of the microwave radio band are used for radars, radio navigation systems, sensor systems, and radio astronomy.
Microwave radio systems are carriers for voice data signal, cheap and easy to tap.
Microwave Radio System
Satellite Radio Link
Satellite radio is a radio service broadcast from satellites primarily to cars, with the signal broadcast nationwide, across a much wider geographical area than terrestrial radio stations. It is available by subscription, mostly commercial free, and offers subscribers more stations and a wider variety of programming options than terrestrial radio.
Satellite radio link uses transponder to send information and easy to intercept.
The following answers are incorrect:
Fiber optics - Fiber optics cables are used for long distance, hard to splice, not vulnerable to cross talk and difficult to tap. It supports voice data, image and video.
Radio System - Radio systems are used for short distance, cheap and easy to tap.
Satellite Radio Link - Satellite radio link uses transponder to send information and easy to tap.
The following reference(s) were/was used to create this question:
CISA review manual 2014 page number 265

 

NEW QUESTION 137
An IT steering committee assists the board of directors to fulfill IT governance duties by:

  • A. overseeing major projects and IT resource allocation.
  • B. developing IT policies and procedures for project tracking.
  • C. implementing the IT strategy.
  • D. focusing on the supply of IT services and products.

Answer: C

 

NEW QUESTION 138
The IS quality assurance (OA) group is responsible for

  • A. ensuring that program changes adhere to established standards.
  • B. monitoring the execution of computer processing tasks
  • C. designing procedures to protect data against accidental disclosure.
  • D. ensuring that the output received from system processing is complete.

Answer: A

 

NEW QUESTION 139
During an audit of an enterprise that is dedicated to e-commerce, the IS manager states that digital signatures are used when receiving communications from customers. To substantiate this, an IS auditor must prove that which of the following is used?

  • A. A hash of the data that is transmitted and encrypted with the customer's private key
  • B. The customer's scanned signature encrypted with the customer's public key
  • C. A biometric, digitalized and encrypted parameter with the customer's public key
  • D. A hash of the data that is transmitted and encrypted with the customer's public key

Answer: A

Explanation:
Explanation/Reference:
Explanation:
The calculation of a hash, or digest, of the data that are transmitted and its encryption require the public key of the client (receiver) and is called a signature of the message, or digital signature. The receiver performs the same process and then compares the received hash, once it has been decrypted with their private key, to the hash that is calculated with the received data. If they are the same, the conclusion would be that there is integrity in the data that have arrived and the origin is authenticated. The concept of encrypting the hash with the private key of the originator provides non repudiation, as it can only be decrypted with their public key and, as the CD suggests, the private key would not be known to the recipient. Simply put, in a key-pair situation, anything that can be decrypted by a sender's public key must have been encrypted with their private key, so they must have been the sender, i.e., non repudiation.
Choice C is incorrect because, if this were the case, the hash could not be decrypted by the recipient, so the benefit of non repudiation would be lost and there could be no verification that the message had not been intercepted and amended. A digital signature is created by encrypting with a private key. A person creating the signature uses their own private key, otherwise everyone would be able to create a signature with any public key. Therefore, the signature of the client is created with the client's private key, and this can be verified-by

 

NEW QUESTION 140
The MOST effective control for reducing the risk related to phishing is:

  • A. publishing the policy on antiphishing on the intranet.
  • B. including signatures for phishing in antivirus software.
  • C. centralized monitoring of systems.
  • D. security training for all users.

Answer: D

Explanation:
Section: Protection of Information Assets
Explanation:
Phishing is a type of e-mail attack that attempts to convince a user that the originator is genuine, with the
intention of obtaining information. Phishing is an example of a social engineering attack. Any social
engineering type of attack can best Decontrolled through security and awareness training.

 

NEW QUESTION 141
Of the following, who are the MOST appropriate staff for ensuring the alignment of user authorization tables with approved authorization forms?

  • A. IT managers
  • B. System owners
  • C. Security administrators
  • D. Database administrators (DBAs)

Answer: C

 

NEW QUESTION 142
What topology provides the greatest redundancy of routes and the greatest network fault tolerance?

  • A. A ring network topology
  • B. A mesh network topology with packet forwarding enabled at each host
  • C. A bus network topology
  • D. A star network topology

Answer: B

Explanation:
Section: Protection of Information Assets
Explanation:
A mesh network topology provides a point-to-point link between every network host. If each host is
configured to route and forward communication, this topology provides the greatest redundancy of routes
and the greatest network fault tolerance.

 

NEW QUESTION 143
Code changes are compiled and placed in a change folder by the developer. An implementation team migrates changes to production from the change folder. Which of the following BEST indicates separation of duties is in place during the migration process?

  • A. The implementation team does not have experience writing code.
  • B. A second individual performs code review before the change is released to production.
  • C. The developer approves changes prior to moving them to the change folder.
  • D. The implementation team does not have access to change the source code.

Answer: B

Explanation:
Section: Information System Acquisition, Development and Implementation

 

NEW QUESTION 144
The rate of change in technology increases the importance of:

  • A. meeting user requirements.
  • B. outsourcing the IS function.
  • C. hiring personnel willing to make a career within the organization.
  • D. implementing and enforcing good processes.

Answer: D

Explanation:
Explanation/Reference:
Explanation:
Change requires that good change management processes be implemented and enforced. Outsourcing the IS function is not directly related to the rate of technological change. Personnel in a typical IS department are highly qualified and educated; usually they do not feel their jobs are at risk and are prepared to switch jobs frequently. Although meeting user requirements is important, it is not directly related to the rate of technological change in the IS environment.

 

NEW QUESTION 145
What is the BEST approach to mitigate the risk of a phishing attack?

  • A. implement an intrusion detection system (IDS)
  • B. User education
  • C. Strong authentication
  • D. Assess web site security

Answer: B

Explanation:
Section: Protection of Information Assets
Explanation:
Phishing attacks can be mounted in various ways; intrusion detection systems (IDSs) and strong authentication cannot mitigate most types of phishing attacks. Assessing web site security does not mitigate the risk. Phishing uses a server masquerading as a legitimate server. The best way to mitigate the risk of phishing is to educate users to take caution with suspicious internet communications and not to trust them until verified. Users require adequate training to recognize suspicious web pages and e-mail.

 

NEW QUESTION 146
An organization is running servers with critical business application that are in an area subject to frequent but brief power outages. Knowledge of which of the following would allow the organization's management to monitor the ongoing adequacy of the uninterruptable power supply (UPS)?

  • A. Business impact of server downtime
  • B. Number of servers supported by the ups
  • C. Duration and interval of the power outages
  • D. Mean time to recover servers after failure

Answer: A

 

NEW QUESTION 147
Which of the following is the PRIMARY advantage of using computer forensic software for investigations?

  • A. Time and cost savings
  • B. The preservation of the chain of custody for electronic evidence
  • C. Efficiency and effectiveness
  • D. Ability to search for violations of intellectual property rights

Answer: B

Explanation:
Section: Protection of Information Assets
Explanation:
The primary objective of forensic software is to preserve electronic evidence to meet the rules of evidence.
Choice B, time and cost savings, and choice C, efficiency and effectiveness, are legitimate concerns that
differentiate good from poor forensic software packages. Choice D, the ability to search for intellectual
property rights violations, is an example of a use of forensic software.

 

NEW QUESTION 148
......

The Ultimate ISACA CISA Dumps PDF Review: https://www.examprepaway.com/ISACA/braindumps.CISA.ete.file.html

Updated Verified CISA Downloadable Printable Exam Dumps: https://drive.google.com/open?id=1EuzzNZKHFkjRVCkVnvOc5Vm2PWcKinlw

Related Blogs

more
ISACA CISA Certification Practice Exam