Question

In: Accounting

An IS auditor is tasked to review the adequacy of an organization's technology recovery strategy. Which...

An IS auditor is tasked to review the adequacy of an organization's technology recovery strategy. Which of the following factors would the auditor PRIMARILY review?

A. Recovery time objective (RTO)

B. Business impact analysis (BIA)

C. Ability to recover from severe disaster

D. Recovery point objective (RPO)


When preparing a business case to support the need of an electronic data warehouse solution, which of the following choices is the MOST important to assist management in the decision-making process?


A. Discuss a single solution.

B. Consider security controls.

C. Demonstrate feasibility.

D. Consult the audit department.


During a postimplementation review of a firewall upgrade project, an IS auditor discovered that several ports were left open that were not required for business purposes. It was determined that the ports were opened for a test server that was no longer being used. What is the BEST control to recommend so that this situation will not recur?


A. Firewall rule changes should happen only if the changes are properly documented.

B. Test servers should never be connected via the production firewall.

C. IT management should engage a third party to review the firewall rules and to conduct a penetration test on a quarterly basis.

D. The security administrator should perform periodic reviews to validate firewall rules.


A decision support system (DSS) is used to help high-level management:
A. solve highly structured problems.
B. combine the use of decision models with predetermined criteria.
C. make decisions based on data analysis and interactive models.
D. support only structured decision-making tasks.


Solutions

Expert Solution

comment for any confusions

upvote it it helped

thanks


Related Solutions

In evaluating the adequacy of the allowance for doubtful accounts, an auditor most likely reviews the...
In evaluating the adequacy of the allowance for doubtful accounts, an auditor most likely reviews the entity’s policy of granting credit to customers to support management’s financial statement assertion of Multiple Choice Existence. Completeness. Valuation and allocation. Rights and obligations.
Evaluate an organization's marketing strategy and provide recommendations for improvement.
Evaluate an organization's marketing strategy and provide recommendations for improvement.
   Critically review the extent to which a financial services organisation’s pricing strategy might be used...
   Critically review the extent to which a financial services organisation’s pricing strategy might be used to achieve sustainable differential advantage.
Discuss the general goals of an organization's compensation system, including how a compensation strategy works to...
Discuss the general goals of an organization's compensation system, including how a compensation strategy works to support the organization's business strategy.
Would a Balanced Scorecard be useful to an organization's strategy implementation process? Why? Is so, should...
Would a Balanced Scorecard be useful to an organization's strategy implementation process? Why? Is so, should an organization use it?
review section 5.7 formulating organizational and personal strategy with the strategy diamond in the text and...
review section 5.7 formulating organizational and personal strategy with the strategy diamond in the text and develop\your own strategy diamond include the final list of your personal goal and objectives as well as the work you did to arrive at them, in not less than 320 words
Prepare a search strategy for understanding a due diligence review of a company. Implement the strategy...
Prepare a search strategy for understanding a due diligence review of a company. Implement the strategy to find five important items in a due diligences review.
Review various literatures, and prepare a review summary on the SCM strategy and how ERP enables...
Review various literatures, and prepare a review summary on the SCM strategy and how ERP enables the success of SCM in ONE company. The writing should highlight the uniqueness of the industry, as well as the company. Identify and comment on the SCM approaches, the elements of good ERP, challenges, implementation, success story as well as failure of ERP in SCM in the pharmaceutical industry. Introduction Introductory in paragraph is clearly stated, with a sharp, distinct focus on the uniqueness...
Discuss the American Recovery and Reinvestment Act (ARRA) and the Health Information Technology for Economic and...
Discuss the American Recovery and Reinvestment Act (ARRA) and the Health Information Technology for Economic and Clinical Health Act (HITECH) and their effects on health information technology (HIT). Discuss the Patient Protection and Affordable Care Act (Obamacare). Define the decade of HIT. Define the electronic medical record (EMR) and electronic health record (EHR), and discuss the differences between the two. Define interoperability. Define the eHealth Exchange
You are the auditor for a company and need to review the company’s accounts receivable using...
You are the auditor for a company and need to review the company’s accounts receivable using probability proportional to size (PPS) sampling. In addition, the board of directors has requested that you and your team present an explanation of your PPS process at its next monthly meeting. -The recorded book value of these accounts is $3,460,000. -The company has a tolerable error of $63,460. -The anticipated error is $13,000. -The risk of incorrect acceptance is 5%. -The acceptable number of...
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT