|
|
เตรียมตัวสอบ CISA
| Area 01 : Question 48 ( P1 - 48 ) |
|
3
4
|
Question : Which of the following steps would an IS auditor normally perform FIRST in a security review ?
| A) |
Evaluate physical access test results |
| |
| B) |
Determine the risks/threats to the data center site |
| |
| C) |
Review business continuity procedures |
| |
| D) |
Test for evidence of physical access at suspect locations |
The Correct Answer is :
B. Determine the risks/threats to the data center site
Explanation :
During planning, the IS auditor should get an overview of the functions being audited and evaluate the audit and business risks.
Choices A and D are part of the audit fieldwork process that occurs subsequent to this planning and preparation.
Choice C is not part of a security review.
เรื่องราวที่เกี่ยวข้อง
|
