CISA Made Easy

                                           - easy CISA preparation

Friday, October 10, 2008

CISA Type Question 08-1010 on Business Continuity & Disaster Recovery

An IS auditor while auditing of an Information System finds that system does not force for backup before and after major events/major updates in the system. Although backups are being taken without proper documentation.

The IS Auditor should ideally suggest

1.Information System should force for backup before and after major events
2.All the major events and backup should be properly documented
3.The existing procedure are complete and sufficient
4.More than one of the above
5.None of the above



Answer to CISA Type Question 08-0610 on Business Continuity Plan (BCP) Auditing


Incident Management Report,Previous reports & Followup audit report, Test reports of various stages & internal inspection and external audit reports all are important for BCP.

So, the correct answer is 4. i,ii,iii & iv


Add Post To: | Digg| Technorati| del.icio.us| Stumbleupon| Reddit| BlinkList| Furl| Spurl| Yahoo| Simpy|

Posted by PassCISA | Permalink |  

Labels:

Readers who visited this post also read :

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 

Home | | | | |

CISA made Easy - Easy CISA Preparation