|
|
เตรียมตัวสอบ CISA
Area 01 : Question 48 ( P1 - 48 ) |
|
3
4
|
Question : Which of the following steps would an IS auditor normally perform FIRST in a security review ?
A) |
Evaluate physical access test results |
|
B) |
Determine the risks/threats to the data center site |
|
C) |
Review business continuity procedures |
|
D) |
Test for evidence of physical access at suspect locations |
The Correct Answer is :
B. Determine the risks/threats to the data center site
Explanation :
During planning, the IS auditor should get an overview of the functions being audited and evaluate the audit and business risks.
Choices A and D are part of the audit fieldwork process that occurs subsequent to this planning and preparation.
Choice C is not part of a security review.
เรื่องราวที่เกี่ยวข้อง
|