Free Isaca CISA Exam Questions

Become Isaca Certified with updated CISA exam questions and correct answers

Page: 1 / 305

Total 1524 Questions | Updated On: Dec 17, 2025

Add To Cart

Question 1

An organization has shifted from a bottom-up approach to a top-down approach in the development of IT policies. This should result in:

A : eater consistency across the organization

B : eater adherence to best practices

C : more comprehensive risk assessment plan

D : ynthesis of existing operational policies

Answer: B

Question 2

In a small IT web development company where developers must have write access to production, the BEST recommendation of an IS auditor would be to:

A : rform a user access review for the development team.

B : re another person to perform migration to production.

C : plement continuous monitoring controls.

D : move production access from the developers.

Answer: C

Question 3

Which of the following would be of GREATEST concern if noted during an audit of compliance with licensing agreements?

A : tribution software is only maintained on a centralized server.

B : software vendor required monthly verification of licenses.

C : ktop software is personally expensed and not capitalized.

D : organization does not monitor upgrades to its software.

Answer: D

Question 4

Identifying and documenting project-related risks BEST enables project managers to:

A : prioritize tasks.

B : track deliverables.

C : define the scope.

D : complete the project on time.

Answer: A

Question 5

An IS auditor is evaluating the access controls for a shared customer relationship management (CRM) system. Which of the following would be the GREATEST concern?

A : dit logging is not enabled.

B : ngle sign-on is not enabled.

C : mplex passwords are not required.

D : curity baseline is not consistently applied.

Answer: A

Page: 1 / 305

Total 1524 Questions | Updated On: Dec 17, 2025

Add To Cart