Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

IT auditing Job Interview > IT Auditing - Information Security Control > Flashcards

IT Auditing - Information Security Control Flashcards

1
Q

Preventative control

A

Exists to prevent the threat from coming in contact with the weakness.

They are firewalls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Compensating controls

A

Alternate controls as designed to accomplish the intent of the original controls as closely as possible. When original designed controls cannot be used due to limitations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Detective Controls

A

IDS is purely detective

Acts as a motion sensor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

NIST Framework

A

Used in execution of information security/Cybersecurity compliance audit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

ISO

A

Is a European Framework; replaces of COSO/COBIT

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Questions for IT financial assessment

A

1) How are IT costs allocated, monitored and controlled?
2) What is the current and forecasted OPEX/CAPEX level?
3) In what areas does the target plan to invest going forward?
4) How has OPEX/CAPEX developed over time?
5) Are there any planned decommissioning of legacy technology leading to cost savings?
6) What are the planned investments to replace existing technology?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Data sources

A

1) Interviews with CIO and CFO.
2) Internal documentation: IT spending.
3) External market research, e.g. benchmark against industry peers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

IT auditing Job Interview (33 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions