exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam

Exam CISA topic 1 question 108 discussion

Actual exam question from Isaca's CISA
Question #: 108
Topic #: 1
[All CISA Questions]

Which of the following is an IS auditor's GREATEST concern when an organization does not regularly update software on individual workstations in the internal environment?

  • A. The organization may not be in compliance with licensing agreements.
  • B. System functionality may not meet business requirements.
  • C. The system may have version control issues.
  • D. The organization may be more susceptible to cyber-attacks.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
5b56aae
8 months, 2 weeks ago
Selected Answer: D
security issues
upvoted 1 times
...
Tef_corp
9 months ago
Selected Answer: D
Unpatched software is a major vulnerability because cyber attackers are constantly looking to exploit known weaknesses in software. By not updating software regularly, the organization leaves its systems exposed to these vulnerabilities, increasing the risk of a cyber attack. CISA prioritizes controls that mitigate security risks. In this case, keeping software updated is a critical security control to prevent cyberattacks. Answer according to CISA guide
upvoted 1 times
...
Deeplaxmi
2 years, 3 months ago
option is d although the they are individual computers in the internal environment, as they still form a part o f network.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...