New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

Full Access IIA IIA-CIA-Part3 Tutorials

Page: 12 / 12
Question 48

Which of the following scenarios best illustrates a spear phishing attack?

Options:

A.

Numerous and consistent attacks on the company's website caused the server to crash and service was disrupted.

B.

A person posing as a representative of the company’s IT help desk called several employees and played a generic prerecorded message requesting password data.

C.

A person received a personalized email regarding a golf membership renewal, and he click a hyperlink to enter his credit card data into a fake website

D.

Many users of a social network service received fake notifications of e unique opportunity to invest in a new product.

Question 49

According to I1A guidance on IT. which of the following activities regarding information security Is most likely to be the responsibility of line management as opposed to executive management, internal auditors, or the board?

Options:

A.

Review and monitor security controls.

B.

Dedicate sufficient security resources.

C.

Provide oversight to the security function.

D.

Assess information control environments.

Question 50

Which of the following is most important for an internal auditor to check with regard to the database version?

Options:

A.

Verify whether the organization uses the most recent database software version.

B.

Verify whether the database software version is supported by the vendor.

C.

Verify whether the database software version has been recently upgraded.

D.

Verify whether .access to database version information is appropriately restricted.

Question 51

An internal auditor was assigned to test for ghost employees using data analytics. The auditor extracted employee data from human resources and payroll. Using spreadsheet functions, the auditor matched data sets by name and assumed that employees who were not present in each data set should be investigated further. However, the results seemed erroneous, as very few employees matched across all data sets. Which of the following data analytics steps has the auditor most likely omitted?

Options:

A.

Data analysis.

B.

Data diagnostics.

C.

Data velocity.

D.

Data normalization.

Page: 12 / 12
Exam Code: IIA-CIA-Part3
Exam Name: Business Knowledge for Internal Auditing
Last Update: Dec 22, 2024
Questions: 340
IIA-CIA-Part3 pdf

IIA-CIA-Part3 PDF

$25.5  $84.99
IIA-CIA-Part3 Engine

IIA-CIA-Part3 Testing Engine

$28.5  $94.99
IIA-CIA-Part3 PDF + Engine

IIA-CIA-Part3 PDF + Testing Engine

$40.5  $134.99