QUESTION: 201

During a project meeting for the implementation of an enterprise resource planning (ERP). a new requirement is requested by the finance department. Which of the following would BEST indicate to an IS auditor that the resulting risk to the project has been assessed?

The project status as reported in the meeting minutes
The analysis of the cost and time impact of the requirement
The updated business requirements
The approval of the change by the finance department

Answer(s): B

Show Answer Next Question

QUESTION: 202

An organization has implemented a quarterly job schedule to update database tables so prices are adjusted in line with a price index. These changes do not go through the regular change management process. Which of the following is the MOST important control to have in place?

An overarching approval is obtained from the change advisory board.
User acceptance testing (UAT) is performed after the production run.
Each production run is approved by an authorized individual.
Exception reports are generated to identify anomalies.

Answer(s): C

Show Answer Next Question

QUESTION: 203

Which of the following methods will BEST reduce the risk associated with the transition to a new system using technologies that are not compatible with the old system?

Pilot operation
Parallel changeover
Modular changeover
Phased operation

Answer(s): B

Show Answer Next Question

QUESTION: 204

Following a merger, a review of an international organization determines the IT steering committee's decisions do not extend to regional offices as required in the consolidated IT operating model. Which of the following is the IS auditor's BEST recommendation?

Create regional centers of excellence.
Engage an IT governance consultant.
Update the IT steering committee's formal charter.
Create regional IT steering committees.

Answer(s): C

Show Answer Next Question

Free ISACA CISA Exam Braindumps (page: 52)

QUESTION: 201

QUESTION: 202

QUESTION: 203

QUESTION: 204

CISA Exam Discussions & Posts