FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 8: Controlling Information Systems: Introduction to Pervasive Controls

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 81

Short Answer

Review LaterAdd Note

Review Later

The process whereby lost data is restored and operations are continued is called ______________________________.

Correct Answer

verified

Show Answer

Question 82

Multiple Choice

Review LaterAdd Note

Review Later

COBIT was developed to:

A) provide guidance to managers, users, and auditors on the best practices for the management of information technology
B) identify specific control plans that should be implemented to reduce the occurrence of fraud
C) specify the components of an information system that should be installed in an e-commerce environment
D) suggest the type of information that should be made available for management decision making

Correct Answer

verified

Show Answer

Question 83

Short Answer

Review LaterAdd Note

In a(n) ______________________________ a Web site is overwhelmed by an intentional onslaught of thousands of simultaneous messages, making it impossible for the attacked site to engage in its normal activities.

The ______________________________ gives detailed instructions to computer operators and to data control about a particular application.

Listed below are several pervasive control plans discussed in Chapter 8. On the blank line to the left of each control plan, insert a "P" (preventive), "D" (detective), or "C" (corrective) to best classify that control. If applicable, more than one code may be inserted for each plan.

The IS function with the responsibility of guiding the IT organization in establishing and meeting user information requirements is the IT steering committee.

Watching a user type in passwords or user IDs or listening as they give account information over the phone is called ______________________________.

An outside auditing firm annually supervises a physical count of the items in a retail store's shelf inventory. This is an example of:

______________________________ documentation provides a description of an application computer program and usually includes the program's purpose, program flowcharts, and source code listings.

The ______________________________ group is responsible for routing all work in to and out of the data center, correcting errors, and monitoring all error correction.

The functions of the security officer commonly include assigning passwords and working with human resources to ensure proper interview practices are conducted during the hiring process.

The operations run manual describes user procedures for an application and assists the user in preparing inputs and using outputs.

The systems development function provides efficient and effective operation of the computer equipment.

Periodic cleaning, testing, and adjusting of computer equipment is referred to as ______________________________.

Alternative names for contingency planning include all of the following except:

Pervasive control plans:

One method for circumventing segregation of duties is ______________________________ between one or more persons (or departments) to exploit a system and conceal an abuse such as fraud.

______________________________ helps to solve the problem posed by single key cryptography by employing a pair of matched keys for each system user, one private (i.e., known only to the party who possesses it) and one public.

The function composed of people, procedures, and equipment and is typically called the information systems department, IS department, or the IT department is the information systems organization.