CISA Made Easy

                                           - easy CISA preparation

Wednesday, August 20, 2008

CISA Type Question 08-2008 on Good Password Policy

An IS Auditor while reviewing password policy of an organization finds the following :


1. Password Complexity and length

2. Allowed default username and password

3. Password Rotation policy

4. Password Periodicity

5. Password file protection

6. Password Field encryption



Which of the above should be the part of a good password policy?

1. All except 5 & 6

2. All except 2

3. All except 2 & 5

4. All of the above



Answer to CISA Type question 08-1608 on Network Audit

Absence of a single client on network topology will not be of major impact most of the times. Different type of cables may be used as per the need of the network and topology. Dynamic Host Configuration Protocol(DHCP) can be used wherever required. The network downtime records and resolution should essentially be part of the incident management.So, the correct answer is 2. There are no records maintained of network downtime, nature of fault and resolution thereafter.






Add Post To: | Digg| Technorati| del.icio.us| Stumbleupon| Reddit| BlinkList| Furl| Spurl| Yahoo| Simpy|

Posted by PassCISA | Permalink |  

Labels:

Readers who visited this post also read :

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 

Home | | | | |

CISA made Easy - Easy CISA Preparation