Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Isaca Exam CISA Topic 5 Question 70 Discussion

Actual exam question for Isaca's CISA exam
Question #: 70
Topic #: 5
[All CISA Questions]

An IS auditor is evaluating an organization's IT strategy and plans. Which of the following would be of GREATEST concern?

Show Suggested Answer Hide Answer
Suggested Answer: A

The best way to prevent fraudulent payments is to implement segregation of duties between the vendor setup and payment processing. Segregation of duties is an important control measure used to mitigate the risks associated with fraud and errors. By separating the processes of vendor setup and payment processing, it ensures that no single individual has control over both activities, and thereby reduces the risk of fraudulent payments. Additionally, other measures such as dual authorization and automated controls can be used to further reduce the risk.


by Lashandra at Feb 08, 2024, 05:33 AM

Limited Time Offer

25%

Off

Get Premium CISA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Lisandra
1 months ago
Wait, so IT isn't even involved in business strategy planning? That's like a chef not being in the kitchen - recipe for disaster!
upvoted 0 times
Veronique
1 months ago
C) IT is not engaged in business strategic planning.
upvoted 0 times
...
Bambi
1 months ago
B) The business strategy meeting minutes are not distributed.
upvoted 0 times
...
Gayla
1 months ago
A) There is not a defined IT security policy.
upvoted 0 times
...
...
Barabara
2 months ago
B) The business strategy meeting minutes not being distributed? That's just lazy. How will anyone know what's going on?
upvoted 0 times
Carmela
1 months ago
C) IT is not engaged in business strategic planning.
upvoted 0 times
...
Frederica
1 months ago
B) I agree, it's important to have clear policies in place.
upvoted 0 times
...
Farrah
1 months ago
A) There is not a defined IT security policy.
upvoted 0 times
...
...
Selma
2 months ago
Hmm, D) Inadequate documentation of IT strategic planning is a red flag. How will the auditor even evaluate the strategy without proper documentation?
upvoted 0 times
...
Sophia
2 months ago
A) A lack of defined IT security policy is pretty worrying. How can you protect the organization without clear security guidelines?
upvoted 0 times
...
Hildred
2 months ago
C) IT is not engaged in business strategic planning seems like the biggest concern. If IT is not involved, how can they align their plans and investments with the business needs?
upvoted 0 times
Gilberto
26 days ago
D) There is inadequate documentation of IT strategic planning.
upvoted 0 times
...
Irma
30 days ago
C) IT is not engaged in business strategic planning.
upvoted 0 times
...
Gianna
1 months ago
B) The business strategy meeting minutes are not distributed.
upvoted 0 times
...
Mi
1 months ago
A) There is not a defined IT security policy.
upvoted 0 times
...
...
Barrett
3 months ago
But what about the inadequate documentation of IT strategic planning? That could also lead to issues in the organization's IT strategy.
upvoted 0 times
...
Glennis
3 months ago
I agree with Rory. Without IT being involved in strategic planning, there could be major gaps in the organization's IT strategy.
upvoted 0 times
...
Rory
3 months ago
I think the greatest concern would be if IT is not engaged in business strategic planning.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77