During the evaluation of controls over a major application development project, the MOST effective use of an IS auditor's time would be to review and evaluate:
Reviewing and evaluating project plans is the most effective use of an IS auditor's time when assessing controls over a major application development project. Project plans outline the overall strategy, objectives, timelines, resources, and milestones of the project. By examining project plans, the auditor can gain insight into the project's governance structure, risk management practices, and control mechanisms.
Acceptance testing is a critical phase in the application development lifecycle where the application is tested to ensure it meets the business requirements and is ready for deployment.
cceptance testing is the most effective use of the IS auditor’s time because it directly evaluates whether the application satisfies the business requirements and is ready for operational deployment, which is the ultimate goal of the project.
Acceptance testing is a critical stage in application development that verifies whether the application meets its intended requirements and functions correctly. Reviewing acceptance testing allows the IS auditor to confirm that the final product aligns with user requirements and specifications. This is a key control for ensuring application quality, functionality, and readiness for production, making it the most effective focus for an IS auditor’s time.
The project plan shows the overall progress, resource allocation, risk management, etc., and provides important information for judging the effectiveness of controls. Although application test cases are also important, the evaluation of the project plan is more effective in understanding the progress and control of the entire project.
Any A?
The question is about evaluation of controls that would be used to audit the system and not an evaluation of the system being developed.
So in essence, adequacy of the controls.
D:
Reviewing and evaluating project plans allows the IS auditor to assess the overall structure and organization of the application development project. It provides insights into the project's scope, objectives, timeline, resource allocation, and management approach. By examining the project plans, the IS auditor can identify potential risks, gaps, or deficiencies in project management practices that could impact the success of the project
This section is not available anymore. Please use the main Exam Page.CISA Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
EBTURK
Highly Voted 1 year, 12 months agojinfkwon
Most Recent 2 months, 1 week agorangaraj
2 months, 2 weeks agoEiad1100
5 months, 2 weeks agodencam
6 months ago1Naa
6 months, 3 weeks agogloby118
8 months, 2 weeks agoSwallows
10 months, 2 weeks agopoopsmcgoops
11 months agopoopsmcgoops
11 months agoa84n
1 year ago5b56aae
1 year, 1 month agoSwallows
1 year, 1 month agofori12
1 year, 2 months agoecho_cert
1 year, 3 months agoShareyes
1 year, 3 months agodahate
1 year, 11 months agoTTH1019
1 year, 11 months ago