The IS auditor should FIRST review:
In planning an audit, the MOST critical step is the identification of the:
The extent to which data will be collected during an IS audit should be determined based on the:
While planning an audit, an assessment of risk should be made to provide:
An IS auditor should use statistical sampling and not judgment (nonstatistical) sampling, when:
During the planning stage of an IS audit, the PRIMARY goal of an IS auditor is to:
When selecting audit procedures, an IS auditor should use professional judgment to ensure that:
An IS auditor evaluating logical access controls should FIRST:
The PRIMARY purpose of an IT forensic audit is:
What should the auditor do?