Here is a sampling of questions in the format of the CISA exam. These questions are related to disaster recovery and business continuity, and will help test your understanding of this subject. Answers with explanations are provided in Appendix A.
An IS auditor is reviewing an organization's contingency planning and recoverability. What is the most important factor to consider for the success of the recovery plan?
The plan has identified all of the critical applications required to be covered for the business to survive.
The plan is stored off-site.
The process is supported by senior management and funded adequately.
Back ups are made and moved off-site regularly.
When reviewing business impacts of possible disruption scenarios, which of the following criteria should be considered?
The likelihood customers will take their business somewhere else and return
The potential losses in terms of buildings and equipment
The costs associated with redeploying a process to replace the one that is lost
The time it would take to fully recover and return to processing
The losses of current business from not meeting existing commitments
I, II, and III only
I, II, III, IV, and V
I, II, III, and V only
II, III, IV, and V only
An IS auditor determines that external consulting was used to create a recovery plan. Which of the following actions would be most appropriate for the IS auditor to take?
Review the costs and contract deliverables for the consulting engagement and assess the adequacy ...