Quiz CISA

Quiz CISA, Certified Information Systems Auditor

The use of risk assessment tools for classifying risk factors should be formalized in your IT audit effort through:

Which of the following correctly describes the purpose of an Electronic data processing audit?

What should be done to determine the appropriate level of audit coverage for an organization’s IT environment?

IS audits should be selected through a risk analysis process to concentrate on:

Your final audit report should be issued:

Well-written risk assessment guidelines for IS auditing should specify which of the following elements at the least (choose all that apply):

The ability of the internal IS audit function to achieve desired objectives depends largely on:

In-house personnel performing IS audits should posses which of the following knowledge and/or skills (choose 2):

what involvement the internal audit team should have?

For application acquisitions with significant impacts, participation of your IS audit team should be encouraged: