B. The IT governance framework
While the other options (A, C, and D) are also important aspects of IT auditing and governance, they are typically reviewed after assessing the IT governance framework to ensure that the organization's IT strategy is on the right track. For instance:
A. Information Security Procedures: These are important components of IT controls, but they are typically assessed in the context of IT general controls and may be part of the IT governance framework.
C. Process Maturity of IT General Controls: The maturity of IT general controls is important but is often evaluated as part of a broader assessment of an organization's IT controls and processes, which falls under the purview of IT governance.
D. The Most Recent Audit Results: While audit results provide valuable insights, they are a result of past assessments. It's more effective to start by reviewing the framework and current implementation before looking at historical audit results to see if there have been improvements or areas of concern over time.
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.CISA Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
SuperMax
7 months ago