|
|
เตรียมตัวสอบ CISA
| Area 02 : Question 26 ( C1 - 26 ) |
|
3
4
|
Question : Which of the following exposures may result if an adequate separation of duties between computer operators and application programmers is NOT maintained ?
| A) |
Inadequate volume testing |
| |
| B) |
Unauthorized program changes |
| |
| C) |
Unintentional omissions of data |
| |
| D) |
Data loss during program execution |
| Question |
| |
( ) |
|
| |
| Choice : A |
| |
| Choice : B |
| |
| Choice : C |
| |
| Choice : D |
The Correct Answer is :
B. Unauthorized program changes
Explanation :
In this situation, the application programmer has been authorized to make program changes.
This function should not be a computer operator task, as this individual already has access to the entire system and all its resources.
The computer operator function should be restricted and monitored.
|
