Question: The COSO framework is built on five interrelated components. Which of the following is NOT one of them? a. Control environment b. Control activities c.

The COSO framework is built on five interrelated components. Which of the following is NOT one of them?

a.

Control environment
b.

Control activities
c.

Risk assessment
d.

InfoSec Governance

Which type of access controls can be role-based or task-based?

a.

content-dependent
b.

nondiscretionary
c.

discretionary
d.

constrained

Which of the following is NOT a category of access control?

a.

mitigating
b.

compensating
c.

preventative
d.

deterrent

Which of the following is the primary purpose of ISO/IEC 27001:2005?

a.

Use within an organization to formulate security requirements and objectives
b.

Use within an organization to ensure compliance with laws and regulations
c.

Implementation of business-enabling information security
d.

To enable organizations that adopt it to obtain certification

Which of the following is NOT a change control principle of the Clark-Wilson model?

a.

No unauthorized changes by authorized subjects
b.

No changes by unauthorized subjects
c.

No changes by authorized subjects without external validation
d.

The maintenance of internal and external consistency

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

The COSO framework is built on five interrelated components. Which of the following is NOT one of them? Group of answer choices control environment risk assessment control activities InfoSec...

Q:

According to the COSO Integrated Framework, ongoing and/or periodic evaluations are an example of which of the five components of internal control? Monitoring Control environment Control activities...

Q:

Which of the following COSO internal control framework components is used to assess the quality of internal control performance over time to ensure that controls continue to effectively manage...

Q:

1 of 25 All of the following statements are true, except: Bondholders are one of the users of financial statements. Any major disagreement the auditor has with management should be discussed with the...

Q:

1 of 25 All of the following statements are true, except: Bondholders are one of the users of financial statements. Any major disagreement the auditor has with management should be discussed with the...

Q:

Need Help in resolving correct answers to muitiple choice questions: 11. An internal audit engagement is considered a moderately high risk audit based on IA's risk model. It is currently on a 2 year...

Q:

Which of the following describes COSO's five interrelated components of internal control? control environment, risk assessment, control activities, information and communication, monitoring...

Q:

1 of 50 Which of the following statements is false? Lapping of accounts receivable is least likely to occur when there is an inadequate segregation of duties. Alternative procedures to the...

Q:

Help me with all the answers Question 1 of 50 Which of the following statements is false? Lapping of accounts receivable is least likely to occur when there is an inadequate segregation of duties....

Q:

Help me with the answers ,I need 95% at least I 'll give you good tip whoever help me to get 95 %trust me Question 1 of 50 Which of the following statements is false? Lapping of accounts receivable...

Q:

For the standard deductions, there are specified contribution tables to be followed as discussed in the previous modules. More examples: 1. Compute for Tita Pau's monthly, semi-monthly, weekly and...

Q:

Not all spontaneous redox reactions produce wonderful results. Corrosion is an example of a spontaneous redox process that has negative effects. What happens in the corrosion of a metal such as iron?...

Q:

93 (1 point) Listen Which of the following affects both the supply and demand for bonds? 1) inflation 2) liquidity 3) real return 4) federal budget deficit

Q:

P-1) (100 Pts.) A chemical manufacturing company (CMC) has a contract for the procurement of the neccssaly chemicals from four suppliers. The chemicals purchased from Supplier A are priced at $20...

Q:

1. Describe the types of power that effective leaders employ

Q:

2. Describe how leadership styles should be adapted to the group situation

Q:

7. Next time you work in a group, pay attention to how the group works. Does the activity follow a linear model, or is the activity punctuated by periods of inertia and periods of intense activity?...