O'Reilly logo

CISA® Certified Information Systems Auditor™ Study Guide, Second Edition by David L. Cannon

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Answers to Assessment Test

  1. D. The first person on the scene is the incident commander, regardless of rank or position. The incident commander may be relieved by a person with more experience or less experience, according to the situation. The incident commander will change throughout the crisis. For more information, see Chapter 8.

  2. C. Undue restrictions on scope would be a major concern as would a lack of time or the inability to obtain sufficient reliable evidence. For more information, see Chapter 2.

  3. D. All of the audit types are valid except procedural, SAS-74, verification, and regulatory (which are all distracters). The valid audit types are financial, operational (SAS-70), integrated (SAS-94), compliance, administrative, forensic, and information ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required