ISACA-Certified Information Systems Auditor Set 13

1.

What type(s) of firewalls provide(s) the greatest degree of protection and control because both firewall technologies inspect all seven OSI layers of network traffic?

A first-generation packet-filtering firewall A circuit-level gateway An application-layer gateway, or proxy firewall, and stateful-inspection firewalls An application-layer gateway, or proxy firewall, but not stateful-inspection firewalls

2.

Which of the following can degrade network performance?

Superfluous use of redundant load-sharing gateways Increasing traffic collisions due to host congestion by creating new collision domains Inefficient and superfluous use of network devices such as switches Inefficient and superfluous use of network devices such as hubs

3.

Which of the following provide(s) near-immediate recoverability for time-sensitive systems and transaction processing?

Automated electronic journaling and parallel processing Data mirroring and parallel processing Data mirroring Parallel processing

4.

What is an effective control for granting temporary access to vendors and external support personnel?

Creating user accounts that automatically expire by a predetermined date Creating permanent guest accounts for temporary use Creating user accounts that restrict logon access to certain hours of the day Creating a single shared vendor administrator account on the basis of least-privileged access

5.

Which of the following help(s) prevent an organization's systems from participating in a distributed denial-of-service (DDoS) attack?

Inbound traffic filtering Using access control lists (ACLs) to restrict inbound connection attempts Outbound traffic filtering Recentralizing distributed systems

6.

What is a common vulnerability, allowing denial-of-service attacks?

Assigning access to users according to the principle of least privilege Lack of employee awareness of organizational security policies Improperly configured routers and router access lists Configuring firewall access rules

7.

What are trojan horse programs?

A common form of internal attack Malicious programs that require the aid of a carrier program such as email Malicious programs that can run independently and can propagate without the aid of a carrier program such as email A common form of Internet attack

8.

What is/are used to measure and ensure proper network capacity management and availability of services?

Network performance-monitoring tools Network component redundancy Syslog reporting IT strategic planning

9.

What can be used to gather evidence of network attacks?

Access control lists (ACL) Intrusion-detection systems (IDS) Syslog reporting Antivirus programs

10.

Which of the following is a passive attack method used by intruders to determine potential network vulnerabilities?

Traffic analysis SYN flood Denial of service (DoS) Distributed denial of service (DoS)

ISACA-Certified Information Systems Auditor Set 13

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

ISACA-Certified Information Systems Auditor Set 13

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner