Interested to Buy Any Domain ? << Click Here >> for more details...
The impact of EDI on internal controls will be:
A. that fewer opportunities for review and authorization
will exist.
B. an inherent authentication.
C. a proper distribution of EDI transactions while in the
possession of third parties.
D. that IPF management will have increased responsibilities
over data center controls.
- 1 Answers
- 6772 Views
- I also Faced
- E-Mail Answers
Answer / guest
Answer: A
EDI promotes a more efficient paperless environment, but at
the same time, less human intervention makes it more
difficult for reviewing and authorizing. Choice B is
incorrect since the interaction between parties is
electronic there is no inherent authentication occurring.
Computerized data can look the same no matter what the
source and does not include any distinguishing human element
or signature. Choice C is incorrect because this is a
security risk associated with EDI. Choice D is incorrect
because there are relatively few, if any, additional data
center controls associated with the implementation of EDI
applications. Instead, more control will need to be
exercised by the user's application system to replace manual
controls, such as site reviews of documents. More emphasis
will need to be placed on control over data transmission
(network management controls).
| Is This Answer Correct ? | 2 Yes | 0 No |
Which of the following access control functions is LEAST likely to be performed by a database management system (DBMS) software package? A. User access to field data B. User sign-on at the network level C. User authentication at the program level D. User authentication at the transaction level
A call-back system requires that a user with an id and password call a remote server through a dial-up line, then the server disconnects and: A. dials back to the user machine based on the user id and password using a telephone number from its database. B. dials back to the user machine based on the user id and password using a telephone number provided by the user during this connection. C. waits for a redial back from the user machine for reconfirmation and then verifies the user id and password using its database. D. waits for a redial back from the user machine for reconfirmation and then verifies the user id and password using the sender's database.
Which of the following protocols would be involved in the implementation of a router and interconnectivity device monitoring system? A. Simple network management B. File transfer C. Simple Mail Transfer Protocol D. Telnet
Which of the following steps would an IS auditor normally perform FIRST in a data center security review? A. Evaluate physical access test results. B. Determine the risks/threats to the data center site. C. Review business continuity procedures. D. Test for evidence of physical access at suspect locations.
The use of residual biometric information to gain unauthorized access is an example of which of the following attacks? A. Replay B. Brute force C. Cryptographic D. Mimic
During which phase of a system development process should an IS auditor first raise the issue of application controls? A. Construction B. System design C. Acceptance testing D. Functional specification
The rate of change of technology increases the importance of: A. outsourcing the IS function. B. implementing and enforcing good processes. C. hiring personnel willing to make a career within the organization. D. meeting user requirements.
Which of the following BEST describes an integrated test facility? A. A technique that enables the IS auditor to test a computer application for the purpose of verifying correct processing B. The utilization of hardware and/or software to review and test the functioning of a computer system C. A method of using special programming options to permit printout of the path through a computer program taken to process a specific transaction D. A procedure for tagging and extending transactions and master records that are used by an IS auditor for tests
There are several methods of providing telecommunications continuity. The method of routing traffic through split cable or duplicate cable facilities is: A. alternative routing. B. diverse routing. C. long-haul network diversity. D. last mile circuit protection.
The MOST appropriate person to chair the steering committee for a system development project with significant impact on a business area would be the: A. business analyst. B. chief information officer. C. project manager. D. executive level manager.
Which of the following is MOST directly affected by network performance monitoring tools? A. Integrity B. Availability C. Completeness D. Confidentiality
The responsibility for designing, implementing and maintaining a system of internal control lies with: A. the IS auditor. B. management. C. the external auditor. D. the programming staff.
Cisco Certifications 
