Logo ExamsQA
Exit
Official Bank 0/1453

ISACA Certified Information Systems Auditor (CISA) - Isaca Actual Exam Questions

Last updated on May 02, 2026

97% Exam Compliance
1453 Total Questions
1
Question

An organization offers an e-commerce platform that allows consumer-to-consumer transactions. The platform now uses blockchain technology to ensure the parties are unable to deny the transactions. Which of the following attributes BEST describes the risk element that this technology is addressing?

Options
A

Integrity
B

Nonrepudiation
C

Confidentiality
D

Availability
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

2
Question

Which of the following is the PRIMARY function of an internal IS auditor when the organization acquires a new IT system to support its business strategy?

Options
A

Identifying significant IT errors and fraud
B

Assessing system development life cycle (SDLC) controls
C

Implementing risk and control gap mitigation
D

Evaluating IT risk and controls
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

3
Question

An IS auditor is providing input to an RFP to acquire a financial application system. Which of the following is MOST important for the auditor to recommend?

Options
A

The application should meet the organization's requirements.
B

Audit trails should be included in the design.
C

Potential suppliers should have experience in the relevant area.
D

Vendor employee background checks should be conducted regularly.
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

4
Question

Which of the following would BEST help to ensure that an incident receives attention from appropriate personnel in a timely manner?

Options
A

Completing the incident management log
B

Broadcasting an emergency message
C

Requiring a dedicated incident response team
D

Implementing incident escalation procedures
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

5
Question

Which of the following should be the FIRST step m managing the impact of a recently discovered zero-day attack?

Options
A

Evaluating the likelihood of attack
B

Estimating potential damage
C

Identifying vulnerable assets
D

Assessing the Impact of vulnerabilities
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

Finish Practice?

Are you sure you want to finish? This will end your practice session.