QUESTION: 117 Exam Topic: 2, Information Security Controls and Audit Management

Which of the following is a term related to risk management that represents the estimated frequency at which a threat is expected to transpire?

Single Loss Expectancy (SLE)
Exposure Factor (EF)
Annualized Rate of Occurrence (ARO)
Temporal Probability (TP)

Answer(s): C

Reveal Solution Next Question

QUESTION: 118 Exam Topic: 2, Information Security Controls and Audit Management

Which of the following tests is an IS auditor performing when a sample of programs is selected to determine if the source and object versions are the same?

A substantive test of program library controls
A compliance test of program library controls
A compliance test of the program compiler controls
A substantive test of the program compiler controls

Answer(s): B

Reveal Solution Next Question

QUESTION: 119 Exam Topic: 2, Information Security Controls and Audit Management

Creating a secondary authentication process for network access would be an example of?

An administrator with too much time on their hands.
Putting undue time commitment on the system administrator.
Supporting the concept of layered security
Network segmentation.

Answer(s): C

Reveal Solution Next Question

QUESTION: 120 Exam Topic: 2, Information Security Controls and Audit Management

The patching and monitoring of systems on a consistent schedule is required by?

Local privacy laws
Industry best practices
Risk Management frameworks
Audit best practices

Answer(s): C

Reveal Solution Next Question

Free 512-50 Exam Braindumps (page: 31)

QUESTION: 117 Exam Topic: 2, Information Security Controls and Audit Management

QUESTION: 118 Exam Topic: 2, Information Security Controls and Audit Management

QUESTION: 119 Exam Topic: 2, Information Security Controls and Audit Management

QUESTION: 120 Exam Topic: 2, Information Security Controls and Audit Management

512-50 Discussions & Posts