[Oct-2022 Newly Released] CISA Exam Questions For You To Pass
ISACA CISA Exam: Basic Questions With Answers
Preparation Guide for ISACA CISA Certification Exam
Study Tips for ISACA CISA Certification Exam
Complete Overview of ISACA CISA Certification for Best Preparation
Have you opted to earn a ISACA CISA certification? Are you super excited about your career growth, which will be caused by holding a CISA certificate? Let's begin our journey of learning and plan our way to our destination, which is winning certification to update your worth.
The ISACA certification is a premier designation for cybersecurity professionals. The ISACA CISA exam takes approximately four hours to complete, must be taken to progress in your current profession, and can be completed anywhere. If you are interested in pursuing government-level certifications, the ISACA certification may serve as a good first step towards other endeavors. This article provides a complete guide of what you can expect to see on the exam, outlines some study tips, and suggests further resources for preparation which are also covered in our ISACA CISA Dumps. This article will help you learn about the ISACA CISA Certification Exam.
How to get access to the ISACA CISA Dumps
You can download PDF files of the practice test by clicking the link, but VCE is not available here. Dumps will give you the confidence and guarantee to pass the CISA exam, by allowing you to download PDF dumpfiles of Simulator & mock tests. You will get CISA exam-relevant data in an instant and then you can start preparing for fasttest.
How to get access to the latest versions of these ISACA CISA Dumps? Let us get started to learn. It is the specialty of these exam dumps that a candidate can get access to these exam dumps from a website or mobile app. Let us do an intimation about them separately. If you want to get access to these exam dumps from a website, you just need to turn on the windows of your computers, open Chrome, firefox, Operamini, or any internet browser, search our exam dumps, download PDF, and start practicing from practice exams anytime. Now let us talk about the mobile phone, how we can get access to these exam dumps through your phone. If you want to get PDF exam dumps files on your portable device. First download our mobile app from the app store or play store, in your IOS or android. Download the PDF test which is associated with the CISA exam and step forward to your certificate.
NEW QUESTION 206
Cross-site scripting (XSS) attacks are BEST prevented through:
- A. application firewall policy settings.
- B. secure coding practices.
- C. a three-tier web architecture.
- D. use of common industry frameworks.
Answer: B
NEW QUESTION 207
When reviewing user access to an application containing sensitive company data, which of the following should be the GREATEST concern with regard to segregation of duties?
- A. The application programmer performs quality assurance functions.
- B. The database administrator performs system analyst functions
- C. The help desk performs application backups.
- D. The network administrator performs security administrator functions.
Answer: D
Explanation:
Section: Information System Operations, Maintenance and Support
NEW QUESTION 208
Which of the following attack best describe "Computer is the target of a crime" and "Computer is the tool of a crime"?
- A. Traffic analysis and Eavesdropping
- B. Denial of Service (DoS) and Installing Key loggers
- C. Piggybacking and Race Condition
- D. War Driving and War Chalking
Answer: B
Explanation:
Explanation/Reference:
In computing, a denial-of-service (DoS) or distributed denial-of-service (DDoS) attack is an attempt to make a machine or network resource unavailable to its intended users. Although the means to carry out, motives for, and targets of a DoS attack may vary, it generally consists of efforts to temporarily or indefinitely interrupt or suspend services of a host connected to the Internet. As clarification, DDoS (Distributed Denial of Service) attacks are sent by two or more persons, or bots. (See botnet) DoS (Denial of Service) attacks are sent by one person or system.
Keystroke logging, often referred to as key logging or keyboard capturing, is the action of recording (or logging) the keys struck on a keyboard, typically in a covert manner so that the person using the keyboard is unaware that their actions are being monitored. It also has very legitimate uses in studies of human- computer interaction. There are numerous key logging methods, ranging from hardware and software- based approaches to acoustic analysis.
There are four types of a computer crimes:
1. Computer is the target of a crime - Perpetrator uses another computer to launch an attack. In this attack the target is a specific identified computer. Ex. Denial of Service (DoS), hacking
2. Computer is the Subject of a crime - In this attack perpetrator uses computer to commit crime and the target is another computer. In this attack, target may or may not be defined. Perpetrator launches attack with no specific target in mind. Ex. Distributed DoS, Malware
3. Computer is the tool of a crime - Perpetrator uses computer to commit crime but the target is not a computer. Target is the data or information stored on a computer. Ex. Fraud, unauthorized access, phishing, installing key logger
4. Computer Symbolizes Crime - Perpetrator lures the user of a computer to get confidential information.
Target is user of computer. Ex. Social engineering methods like Phishing, Fake website, Scam Mails, etc The following answers are incorrect:
Eavesdropping - is the act of secretly listening to the private conversation of others without their consent, as defined by Black's Law Dictionary. This is commonly thought to be unethical and there is an old adage that "eavesdroppers seldom hear anything good of themselves...eavesdroppers always try to listen to matters that concern them." Traffic analysis - is the process of intercepting and examining messages in order to deduce information from patterns in communication. It can be performed even when the messages are encrypted and cannot be decrypted. In general, the greater the number of messages observed, or even intercepted and stored, the more can be inferred from the traffic. Traffic analysis can be performed in the context of military intelligence, counter-intelligence, or pattern-of-life analysis, and is a concern in computer security.
Masquerading - A masquerade attack is an attack that uses a fake identity, such as a network identity, to gain unauthorized access to personal computer information through legitimate access identification. If an authorization process is not fully protected, it can become extremely vulnerable to a masquerade attack.
Masquerade attacks can be perpetrated using stolen passwords and logons, by locating gaps in programs, or by finding a way around the authentication process. The attack can be triggered either by someone within the organization or by an outsider if the organization is connected to a public network. The amount of access masquerade attackers get depends on the level of authorization they've managed to attain. As such, masquerade attackers can have a full smorgasbord of cybercrime opportunities if they've gained the highest access authority to a business organization. Personal attacks, although less common, can also be harmful.
The following reference(s) were/was used to create this question:
CISA review Manual 2014. Page number 321
http://en.wikipedia.org/wiki/Denial-of-service_attack
http://en.wikipedia.org/wiki/Eavesdropping
http://en.wikipedia.org/wiki/Traffic_analysis
http://www.techopedia.com/definition/4020/masquerade-attack
NEW QUESTION 209
In an environment that automatically reports all program changes. which of the following is the MOST efficient way to detect unauthorized changes to production programs?
- A. Reviewing the last compile date of production programs
- B. Periodically running and reviewing test data against production programs
- C. Manually comparing code in production programs to controlled copies
- D. Verifying user management approval of modifications
Answer: D
NEW QUESTION 210
During what process should router access control lists be reviewed?
- A. Business continuity review
- B. Environmental review
- C. Data integrity review
- D. Network security review
Answer: D
Explanation:
Section: Protection of Information Assets
Explanation:
Network security reviews include reviewing router access control lists, port scanning, internal and external connections to the system, etc. Environmental reviews, business continuity reviews and data integrity reviews do not require a review of the router access control lists.
NEW QUESTION 211
Which the following is MOST critical for the effective implementation of IT governance?
- A. Documented policies
- B. Supportive corporate culture
- C. Internal auditor commitment
- D. Strong risk management practices
Answer: B
NEW QUESTION 212
When reviewing a data classification scheme, it is MOST important for an IS auditor to determine if.
- A. the security criteria are clearly documented for each classification
- B. Senior IT managers are identified as information owner.
- C. each information asset is to a assigned to a different classification.
- D. the information owner is required to approve access to the asset
Answer: A
NEW QUESTION 213
Which of the following statement INCORRECTLY describes network device such as a Router?
- A. Router creates a new header for each packet
- B. Router assigns a different network address per port
- C. Router does not forward broadcast packet
- D. Router builds a routing table based on MAC address
Answer: D
Explanation:
Section: Information System Operations, Maintenance and Support
Explanation/Reference:
The INCORRECTLY keyword is used in the question. You need to find out a statement which is not valid
about router. Router builds a routing table based on IP address and not on MAC address.
Difference between Router and Bridge:
Router
Bridge
Creates a new header for each packet
Does not alter header. Only reads the header
Builds routing table based on IP address
Build forwarding table based on MAC address
Assigns a different network address per port
Use the same network address for all ports
Filters traffic based on IP address
Filter traffic based on MAC address
Does not forward broadcast packet
Forward broadcast packet
Does not forward traffic that contain destination address unknown to the router
Forward traffic if destination address is unknown to bridge
For your exam you should know below information about network devices:
Repeaters
A repeater provides the simplest type of connectivity, because it only repeats electrical signals between
cable segments, which enables it to extend a network. Repeaters work at the physical layer and are add-on
devices for extending a network connection over a greater distance. The device amplifies signals because
signals attenuate the farther they have to travel.
Repeaters can also work as line conditioners by actually cleaning up the signals. This works much better
when amplifying digital signals than when amplifying analog signals, because digital signals are discrete
units, which makes extraction of background noise from them much easier for the amplifier. If the device is
amplifying analog signals, any accompanying noise often is amplified as well, which may further distort the
signal.
A hub is a multi-port repeater. A hub is often referred to as a concentrator because it is the physical
communication device that allows several computers and devices to communicate with each other. A hub
does not understand or work with IP or MAC addresses. When one system sends a signal to go to another
system connected to it, the signal is broadcast to all the ports, and thus to all the systems connected to the
concentrator.
Repeater
Bridges
A bridge is a LAN device used to connect LAN segments. It works at the data link layer and therefore works
with MAC addresses. A repeater does not work with addresses; it just forwards all signals it receives.
When a frame arrives at a bridge, the bridge determines whether or not the MAC address is on the local
network segment. If the MAC address is not on the local network segment, the bridge forwards the frame
to the necessary network segment.
Bridge
Routers
Routers are layer 3, or network layer, devices that are used to connect similar or different networks. (For
example, they can connect two Ethernet LANs or an Ethernet LAN to a Token Ring LAN.) A router is a
device that has two or more interfaces and a routing table so it knows how to get packets to their
destinations. It can filter traffic based on access control lists (ACLs), and it fragments packets when
necessary. Because routers have more network-level knowledge, they can perform higher-level functions,
such as calculating the shortest and most economical path between the sending and receiving hosts.
Router and Switch
Switches
Switches combine the functionality of a repeater and the functionality of a bridge. A switch amplifies the
electrical signal, like a repeater, and has the built-in circuitry and intelligence of a bridge. It is a multi-port
connection device that provides connections for individual computers or other hubs and switches.
Gateways
Gateway is a general term for software running on a device that connects two different environments and
that many times acts as a translator for them or somehow restricts their interactions.
Usually a gateway is needed when one environment speaks a different language, meaning it uses a certain
protocol that the other environment does not understand. The gateway can translate Internetwork Packet
Exchange (IPX) protocol packets to IP packets, accept mail from one type of mail server and format it so
another type of mail server can accept and understand it, or connect and translate different data link
technologies such as FDDI to Ethernet.
Gateway Server
The following were incorrect answers:
The other options presented correctly describes about Router.
The following reference(s) were/was used to create this question:
CISA review manual 2014 Page number 263
NEW QUESTION 214
Which of the following is the MOST important action in recovering from a cyberattack?
- A. Use of cyber forensic investigators
- B. Creation of an incident response team
- C. Filling an insurance claim
- D. Execution of a business continuity plan
Answer: D
Explanation:
Section: Protection of Information Assets
Explanation: The most important key step in recovering from cyberattacks is the execution of a business continuity plan to quickly and cost-effectively recover critical systems, processes and data. The incident response team should exist prior to a cyberattack. When a cyberattack is suspected, cyber forensic investigators should be used to set up alarms, catch intruders within the network, and track and trace them over the Internet. After taking the above steps, an organization may have a residual risk that needs to be insured and claimed for traditional and electronic exposures.
NEW QUESTION 215
.What influences decisions regarding criticality of assets?
- A. The business criticality of the data to be protected
- B. The business criticality of the data to be protected, and the scope of the impact upon the organization as a whole
- C. Internal corporate politics
- D. The business impact analysis
Answer: B
Explanation:
Criticality of assets is often influenced by the business criticality of the data to be protected and by the scope of the impact upon the organization as a whole. For example, the loss of a network backbone creates a much greater impact on the organization as a whole than the loss of data on a typical user's workstation.
NEW QUESTION 216
When auditing a software development project, a review of which of the following will BEST verify that
project work is adequately subdivided?
- A. Functional and technical design documents
- B. Statement of work
- C. Scope statement
- D. Work breakdown structure
Answer: D
Explanation:
Section: Protection of Information Assets
Explanation
NEW QUESTION 217
An IS auditor notes that several recent incidents related to server overload were not anticipated early enough by IT operations to prevent outages. Which of the (lowing is the auditor's BEST recommendation?
- A. Update the IT operations balanced scorecard.
- B. Purchase additional server hardware.
- C. Improve training for IT operations personnel.
- D. Re-evaluate key performance indicators (KPIs).
Answer: D
NEW QUESTION 218
Which of the following BEST ensures that effective change management is in place in an IS environment?
- A. User authorization procedures for application access are well established.
- B. User-prepared detailed test criteria for acceptance testing of the software.
- C. Adequate testing was carried out by the development team.
- D. Access to production source and object programs is well controlled.
Answer: A
Explanation:
Section: Protection of Information Assets
NEW QUESTION 219
Which of the following is the MOST effective type of antivirus software?
- A. integrity checkers
- B. Scanners
- C. Vaccines
- D. Active monitors
Answer: A
Explanation:
Explanation/Reference:
Explanation:
Integrity checkers compute a binary number on a known virus-free program that is then stored in a database file. This number is called a cyclical redundancy check (CRC). When that program is called to execute, the checker computes the CRC on the program about to be executed and compares it to the number in the database. A match means no infection; a mismatch means that a change in the program has occurred. A change in the program could mean a virus. Scanners look for sequences of bits called signatures that are typical of virus programs. They examine memory, disk boot sectors, executables and command files for bit patterns that match a known virus. Therefore, scanners need to be updated periodically to remain effective. Active monitors interpret DOS and ROM basic input-output system (BIOS) calls, looking for virus-like actions. Active monitors can be misleading, because they cannot distinguish between a user request and a program or virus request. As a result, users are asked to confirm actions like formatting a disk or deleting a file or set of files. Vaccines are known to be good antivirus software.
However, they also need to be updated periodically to remain effective.
NEW QUESTION 220
Which of the following would provide management with the MOST reasonable assurance that a new data warehouse will meet the needs of the organization?
- A. Facilitating effective communication between management and developers
- B. Classifying data quality issues by the severity of their impact to the organization
- C. Appointing data stewards to provide effective data governance
- D. Integrating data requirements into the system development life cycle (SDLC)
Answer: A
NEW QUESTION 221
A hardware control that helps to detect errors when data are communicated from one computer to another is known as a:
- A. duplicate check.
- B. validity check.
- C. parity check.
- D. table lookup.
Answer: C
Explanation:
Section: Protection of Information Assets
Explanation:
A parity check will help to detect data errors when data are read from memory or communicated from one computer to another. A one-bit digit (either 0 or 1) is added to a data item to indicate whether the sum of that data item's bit is odd or even. When the parity bit disagrees with the sum of the other bits, an error report is generated.
NEW QUESTION 222
.When should application controls be considered within the system-development process?
- A. After application module testing
- B. As early as possible, even in the development of the project's functional specifications
- C. After application unit testing
- D. After applications systems testing
Answer: B
Explanation:
Application controls should be considered as early as possible in the system-development process, even in the development of the project's functional specifications.
NEW QUESTION 223
A hub is a device that connects:
- A. a LAN with a WAN.
- B. two segments of a single LAN.
- C. a LAN with a metropolitan area network (MAN).
- D. two LANs using different protocols.
Answer: B
Explanation:
Explanation/Reference:
Explanation:
A hub is a device that connects two segments of a single LAN. A hub is a repeater. It provides transparent connectivity to users on all segments of the same LAN. It is a level 1 device.
Incorrect answers:
A. A bridge operates at level 2 of the OSI layer and is used to connect two LANs using different protocols (e.g., joining an ethernet and token network) to form a logical network.
B. A gateway, which is a level 7 device, is used to connect a LAN to a WAN.
C. A LAN is connected with a MAN using a router, which operates in the network layer.
NEW QUESTION 224
Which of the following is MOST important to review when planning lor an IS audit of an organization's cross-border data Translators?
- A. Long-term IS strategy
- B. Offshore supplier risk assessments
- C. Previous external audit reports
- D. Applicable regulatory requirements
Answer: D
NEW QUESTION 225
When reviewing an organization's logical access security, which of the following should be of MOST concern to an IS auditor?
- A. Passwords are not shared.
- B. The allocation of logon IDs is controlled.
- C. Password files are not encrypted.
- D. Redundant logon IDs are deleted.
Answer: C
Explanation:
Explanation/Reference:
Explanation:
When evaluating the technical aspects of logical security, unencrypted files represent the greatest risk.
The sharing of passwords, checking for the redundancy of logon IDs and proper logon ID procedures are essential, but they are less important than ensuring that the password files are encrypted.
NEW QUESTION 226
......
New 2022 Realistic Free ISACA CISA Exam Dump Questions and Answer: https://www.test4engine.com/CISA_exam-latest-braindumps.html
CISA Practice Test Engine: Try These 361 Exam Questions: https://drive.google.com/open?id=1qGZpV_Ll92X8VYb3uXAN_WEqTnhbkjs2