ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 58 discussion

Actual exam question from Isaca's CISA
Question #: 58
Topic #: 1
[All CISA Questions]

An IS auditor is evaluating the access controls for a shared customer relationship management (CRM) system. Which of the following would be the GREATEST concern?

  • A. Audit logging is not enabled.
  • B. Single sign-on is not enabled.
  • C. Complex passwords are not required.
  • D. Security baseline is not consistently applied.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by saado9 at March 7, 2023, 5:19 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
JZ1710
4 months, 3 weeks ago
Selected Answer: A
Without logging, organizations cannot detect unauthorized access, insider threats, or security incidents.
upvoted 1 times
...
Pumeza
8 months, 2 weeks ago
A. Audit logging is not enabled.
upvoted 1 times
...
a84n
1 year, 2 months ago
Selected Answer: A
Answer: A
upvoted 1 times
...
5b56aae
1 year, 2 months ago
Selected Answer: D
Security is the most important issue
upvoted 1 times
...
Swallows
1 year, 3 months ago
Selected Answer: A
The biggest concern for IS auditors evaluating access controls in CRM systems is that audit logs are not valid.
upvoted 1 times
...
Rachy
1 year, 5 months ago
Selected Answer: A
The greatest concern here is A, If audit login is not enabled , how are we going to trace and maintain customer management
upvoted 3 times
...
meelaan
1 year, 10 months ago
Selected Answer: D
D includes A
upvoted 2 times
choboanon
10 months ago
It includes A but D is too broad. The question is asking about access controls which you need an audit log for.
upvoted 1 times
...
...
Gingingin
2 years ago
I choose A instead of D. Since a "security baseline" is too general, not specify on any objectives.
upvoted 2 times
...
hoho
2 years, 1 month ago
Agree on D, it should be more appropriate for CRM system
upvoted 1 times
...
Peter_CISA
2 years, 3 months ago
I think D includes A Does anyone have any great suggestions?
upvoted 3 times
...
Delta67
2 years, 4 months ago
A, it is important to have audit trail with regards to all customer interactions to maintain and address improve CR through CRM;customer relationship management
upvoted 1 times
...
saado9
2 years, 4 months ago
D. Security baseline is not consistently applied.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel