Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. ISACA
  5. CISA

ISACA CISA Exam Questions
Certified Information Systems Auditor (Page 65 )

Updated On: 28-Feb-2026
Page 65 of 366
PDF with 1823 Questions

An employee transfers from an organization's risk management department to become the lead IS auditor. While in the risk management department, the employee helped develop the key performance indicators (KPIs) now used by the organization. Which of the following would pose the GREATEST threat to the independence of this auditor?

  1. Evaluating the effectiveness of IT risk management processes
  2. Recommending controls to address the IT risks identified by KPIs
  3. Developing KPIs to measure the internal audit team
  4. Training the IT audit team on IT risk management processes

Answer(s): B



As part of an audit response, an auditee has concerns with the recommendations and is hesitant to implement them. Which of the following would be the BEST course of action for the IS auditor?

  1. Suggest hiring a third-party consultant to perform a current state assessment.
  2. Issue a final report without including the opinion of the auditee.
  3. Conduct further discussions with the auditee to develop a mitigation plan.
  4. Accept the auditee's response and perform additional testing.

Answer(s): C



After discussing findings with an auditee, an IS auditor is required to obtain approval of the report from the CEO before issuing it to the audit committee. This requirement PRIMARILY affects the IS auditor's:

  1. judgment
  2. effectiveness
  3. independence
  4. integrity

Answer(s): C



During a review of IT service desk practices, an IS auditor notes that help desk personnel are spending more time fulfilling user requests for password resets than resolving critical incidents. Which of the following recommendations to IT management would BEST address this situation?

  1. Calculate the age of incident tickets and alert senior IT personnel when they exceed service level agreements (SLAs).
  2. Provide annual password management training to end users to reduce the number of instances requiring password resets.
  3. Incentivize service desk personnel to close incidents within agreed service levels.
  4. Implement a self-service solution and redirect users to access frequently requested services.

Answer(s): D



During which phase of a system development project should key performance indicators (KPIs) be established?

  1. Planning phase
  2. Initiation phase
  3. Execution phase
  4. Closure phase

Answer(s): A



Viewing page 65 of 366
Viewing questions 321 - 325 out of 1823 questions



Post your Comments and Discuss ISACA CISA exam dumps with other Community members:

CISA Exam Discussions & Posts

AI Tutor