Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
14 Cards in this Set
- Front
- Back
WHAT ARE THE QUALIFICATIONS OF THE "INCIDENT COMMANDER WHEN RESPONDING TO A CRISIS
|
FIRST PERSON ON THE SCENE. REGARDLESS OF RANK OR POSITION.
|
|
WHAT WOULD BE A CONCERN THAT THE AUDITOR SHOULD EXPLAIN IN THE AUDIT REPORT ALONG WITH FINDINGS?
|
UNDUE RESTRICTIONS ON SCOPE; LACK OF TIME; OR THE INABILITY TO OBTAIN SUFFICIENT EVIDENCE IS A MAJOR CONCERN.
|
|
WHAT ARE THE DIFFERENT TYPES OF AUDITS?
|
THE VALID TYPES OF AUDITS ARE
1. FINANCIAL 2. OPERATIONAL (SAS-74) 3. INTEGRATED (SAS-94) 4.COMPLIANCE 5. ADMINISTRATIVE 6. FORENSIC 7. INFORMATIONSYSTEMS |
|
WHAT INDICATORS ARE USED TO IDENTIFY THE ANTICIPATED LEVEL OF RECOVERY AND LOSS AT A GIVEN POINT IN TIME?
|
RPO AND RTO
|
|
WHAT IS THE RECOVERY POINT OBJECTIVE (RPO)
|
THE REC POINT OBJECTIVE INDICATES THE FALLBACK POSITION AND DURATION OF LOSS THAT HAS OCCURRED
|
|
WHAT IS AN EXAMPLE OF A VALID RPO?
|
A VALID RPO EXAMPLE IS TO RECOVER BY USING BACKUP DATA FROM LAST NIGHT'S BACK-UP TAPE, THIS WOULD ALSO INDICATE THAT THE MORE RECENT TRANSMISSIONS WOULD BE LOST
|
|
WHAT IS THE RTO?
|
THE RTO INDICATES A POINT IN TIME THAT THE RESTORED DATA SHOULD BE AVAILABLE FOR THE USER TO ACCESS.
|
|
WHAT IS THE PRINCIPAL ISSUE SURROUNDING THE USE OF CAAT SOFTWARE?
|
1. COST
2. TRAINING 3. SECURITY OF OUTPUT THESE ARE MAJOR CONSIDERATIONS FOR CAAT. |
|
WHAT IS THE PURPOSE OF RISK ANALYSIS
|
1. SUPPORTS RISK-BASED AUDIT DECISIONS
2. ASSISTS THE AUDITOR IN DETERMINING AUDIT OBJECTIVES 3. ASSISTS TEH AUDITOR IN IDENTIFYING RISKS AND THREATS |
|
WHAT IS NOT A PURPOSE OF RISK ANALYSIS
|
TO ENSURE ABSOLUTE SAFETY DURING THE AUDIT.
|
|
WHAT ARE THE STEPS FOR BUSINESS PROCESS RE-ENGINEERING (BPR), IN PROPER SEQUENCE
|
1. ENVISION
2. INITIATE 3. DIAGNOSE 4. REDESIGN 5. RECONSTRUCT 6. EVALUATE |
|
WHAT IS THE METHODOLOGY BEHIND BPR?
|
1. YOU NEED TO ENVISION THE NEED
2. INITIATE THE PROJECT 3. DIAGNOSE THE EXISTING THE PROJECT 4. REDESIGN A PROCESS 5. USE CHANGE MANAGEMENT TO RECONSTRUCT THE ORGANIZATION IN TRANSITION 6. EVALUATE THE RESULTS TRANSLATE |
|
EVERY IDIOT DIAGNOSES REDESIGN THEN USES CHANGE MANAGEMENT TO EVALUATE IT. MNEMONIC FOR BPR
|
ENVISION THE PLAN; INITIATE THE PROJECT; DIAGNOSE THE EXISTING PROCESS; REDESIGN A PROCESS, USE CHANGE MANAGEMENT TO RECONSTRUCT WHILE IN TRANSITION; AND THEN EVALUATE THE RESULTS. (REMEMBER THE JOINT COMMISSION)
|
|
WHICH OF THE FOLLOWING FUNCTIONS SHOULD BE SEPARATED FROM THE OTHERS IF SEGREGATION OF DUTIES CANNOT BE ACHIEVED IN AN AUTOMATED SYSTEM?
|
1. ORIGINATION
2. AUTHORIZATION 3. CORRECTION 4. REPROCESSING AUTHORIZATION SHOULD BE SEPARATE FROM ALL OTHER ACTIVITIES. A SECOND PERSON SHOULD REVIEW CHANGES BEFORE IMPLEMENTATION |