Q) IS auditor considers access to the program to determine whether the 10 most recent forms of "New user" were properly authorized. That's an example:
a) variable sampling.
b) matter expertise
c) verification of compliance.
d) Stop-and-go sample.
Q) Decisions and actions of the APA, the auditor is likely to influence which of the following risks?
Q) Overall business risk for this threat can be expressed as:
a) product of the probability and magnitude of the impact of the threat successfully exploits the vulnerability
b) the impact should a threat successfully exploits the vulnerability.
c) the likelihood of a threat source to use a specific vulnerability.
d) collective assessment Group on Risk Assessment
Q) Which of the following is a material testing?
a) Check Exception reports list
b) Secure approval settings changes
c) Using statistical sampling to inventory the tape library
d) After reviewing the history password records