QUESTION: 105 Exam Topic: 2, Information Security Controls and Audit Management

The amount of risk an organization is willing to accept in pursuit of its mission is known as

Risk mitigation
Risk transfer
Risk tolerance
Risk acceptance

Answer(s): C

Reveal Solution Next Question

QUESTION: 106 Exam Topic: 2, Information Security Controls and Audit Management

Which of the following is a fundamental component of an audit record?

Date and time of the event
Failure of the event
Originating IP-Address
Authentication type

Answer(s): A

Reveal Solution Next Question

QUESTION: 107 Exam Topic: 2, Information Security Controls and Audit Management

Your IT auditor is reviewing significant events from the previous year and has identified some procedural oversights.
Which of the following would be the MOST concerning?

Lack of notification to the public of disclosure of confidential information.
Lack of periodic examination of access rights
Failure to notify police of an attempted intrusion
Lack of reporting of a successful denial of service attack on the network.

Answer(s): A

Reveal Solution Next Question

QUESTION: 108 Exam Topic: 2, Information Security Controls and Audit Management

Which of the following is a benefit of a risk-based approach to audit planning?

Resources are allocated to the areas of the highest concern
Scheduling may be performed months in advance
Budgets are more likely to be met by the IT audit staff
Staff will be exposed to a variety of technologies

Answer(s): A

Reveal Solution Next Question

Free 512-50 Exam Braindumps (page: 28)

QUESTION: 105 Exam Topic: 2, Information Security Controls and Audit Management

QUESTION: 106 Exam Topic: 2, Information Security Controls and Audit Management

QUESTION: 107 Exam Topic: 2, Information Security Controls and Audit Management

QUESTION: 108 Exam Topic: 2, Information Security Controls and Audit Management

512-50 Discussions & Posts