Owner: CISA made Easy - Easy CISA Preparation URL:passcisa.blogspot.com Join Date: Mon, 16 Jun 2008 03:06:54 -0500 Rating:0 Site Description: CISA Exam, CISA Free Resources, Certified Information System Auditor, CISA Exam, IS Audit Process,IT Governance, IT Service Delivery, System and Infrastructure Life Cycle development, Protection of Information Assets, Business Continuity and Disaster reco Site statistics:Click here
Audit Evidence gathering for CISA Exam- How an IS Auditor gathers audit evidence 2008-06-16 01:19:00 CISA-PTR 5 Some Important Techniques for gathering audit evidence includes Observation [Very Important] Interview/Inspection/Inquiry Analysis of Organizational Structure Policy, Procedures & Standards Examination Tests & Checks CISA Type Question 5. An IS Auditor
while auditing the IS setup of a construction firm has collected aud Read more:gathers
Prepare for CISA Exam by helping IS Auditors in starting IS Audit Assignment 2008-06-14 21:28:00 CISA - PTR Typical IS Audit
Steps (may vary from audit to audit) [IS Audit Process] For complete detail read CISA Review Manual published by ISACA CISA Type Question 4. IS Audit of a Big Financial Management system has been entrusted to a group of IS Auditors. What step IS Auditors are likely to follow first? Read more:Assignment
CISA Made Easy - How important is look of an IS Auditor ? 2008-06-12 01:24:00 CISA - PTR An IS Auditor
should be [IS Audit Process]Professionally & Technically competent and updated &Independent of auditee in Form, Attitude & ConductCISA Type Question 3. Which of the following does not support Principle of Independence in IS Audit Process? [IS Audit Process]1. Auditing an application package developed by auditor himself 2.
CISA Made Easy - Learn about Packet Filtering firewall in a minute 2008-06-11 00:22:00 CISA Important Point to Remember :PacketFiltering
Firewall [Protection of Information Assets] Characteristics Shortcomings if any Router/Firewall sits between trusted and untrusted network Works at network layer (OSI Layer 3).Checks IP address of source and destination Susceptible t
What an Audit Charter should document 2008-06-10 01:30:00 CISA-PTR 1AuditCharter
/Engagement Letter should clearly document
[IS Audit Process] Ø Accountabilities Ø Authorities Ø Purpose/Scope & Ø Responsibilitiesof audit function CISA Type Question 1.Which of the following is LEAST important characteristics of Audit Charter? [IS Audit Process] 1. Audit Charter delegates authority from one person/organization
No title 2008-06-05 08:32:00 Dear Readers/Viewers, I am shortly going to start quick tips for Certified Information System Auditor (CISA) Exam preparation. CISA certification is one of the highly rated Certification of present era conducted by ISACA (). I recommend all viewers/readers who wish to have a bright career in IS Audit/Security, to go to i
Learn Diverse routing and Alternative routing for CISA Exam through diagrams 2008-06-16 04:46:00 Following are the hypothetical diagrams for Diverse
Routing and Alternative
RoutingCISA Type Question 6.An IS Auditor while auditing a network finds a network routing scheme with following characteristics:1. Routing involves two exchanges.2. Routing involves split cables.This routing scheme is most likely to be:1. diverse Routing2. alternative Routing3. a combination of both of the above.4. none o
How Packet movement affect LAN performance 2008-06-17 04:55:00 CISA Quick Points -7 Packet
can move in one of the following ways: 1. Unicasting 2. Multicasting 3. Broadcasting Packet movement
will be clear by the way of following diagram: We can see the packet loss will be aximum in Broadcasting. CISA Type Question 7. An IS Auditor while auditing a network find degraded performance of a Local Area Network (LAN).
Segregation of duties from CISA Exam Point of View 2008-06-19 04:09:00 CISA Exam Quick Tips 8 : Segregation
of duties
for a programmer. A programmer can be a System Programmer or an Application Programmer. So, the question is what additioal job a programmer can be assigned to? A programmer can be a System Analyst. Means, System programmer and a Programmer who designs application to run on systems can be a System Analyst.
CISA Preparation - Know the benefits of Encryption 2008-07-03 08:51:00 CISA Quick Tips 18 following are the benefits of encryption: 1. Confidentiality Only legitimate destination (to whom data has been sent) can access the data. 2. Integrity Data has not been modified in the transmission process ****3. Non-repudiation**** Sender later can not deny his sending of data. Where use of encryption is beneficial ? For Financial tra Read more:Encryption
Important types of Sampling for CISA Exam 2008-07-02 11:31:00 CISA Quick Point 17 Sampling
could be of many types
. For the preparation of CISA Exam you should know the the types of sampling (I think indepth knowledge about each is not always needed. the basics should do) Important types of sampling are 1. Simple Random sampling 2. Stratified Random Sampling 3. Multistage Cluster Sampling 4. Purposive sampling. Simple Rand
Hybrid Firewall for CISA Exam 2008-07-01 09:14:00 CISA Quick Point 16 Following diagram will explain layered approach of a typical HybridFirewall
. This is clear from the above diagram that Hybrid firewall is a layered approach which blocks viruses/worms/malicious agents by one or more of the following 1. Routing Checks 2. Stateful Inspection 3. Application Checks CISA Type question 16.
CAAT for CISA Exam 2008-06-30 07:01:00 CISA Quick Point 15CAAT stands for Computer Assisted Audit Technique.Question may be asked how an IS auditor will evaluate CAAT or by what way CAAT will be audited ?I believe different types of tests can be the best way of evaluating CAAT.CISA Type Question 15An IS Auditor is evaluating /auditing a Computer Assisted Audit Technique (CAAT) for a large Insurance firm.He has conducted a lot of tests
Software Testing for CISA Exam - What is Unit Testing ? 2008-06-27 09:29:00 Welcome to the last posting of this week.I received one query regarding time management for CISA Exam.Time requirement may be different for different person depending upon experience and background. I recommend like this. devote 60% of your time on CISA Review Manual(CRM) and 20 % of your time for ISACA CISA Review Question Answer. Another question was how much time one should devote for this Bl Read more:Software
, Testing
, Software Testing
ACID Property of Database for CISA Exam. 2008-06-26 09:07:00 So, far I have tried to present few topics in easiest manner. I do believe if we go ahead like this Upto next CISA exam we will have all the ingredients for revision. and in year to come this will be a must for every CISA aspirants. In any case ISACA's CISA Review Manual is the key for your success. This blog will help you in the best utilization of Review Manual. I request al Read more:Database
Disaster Recovery Services for CISA Exam 2008-06-25 03:25:00 CISA Quick Points 12 : DisasterRecovery
can be done in many ways. Three important concepts are Hot Site, Warm Site and Cold site. Other important services like reciprocal arrangements/IPF will be covered later. The following diagram will clear your basic concepts of Hot Site, Warm Site and Cold site. Read more:Services
More Audit Evidence for CISA Exam 2008-06-24 08:23:00 CISA Quick Tips 11: Appropriate documented audit evidence should be there to support the audit results. CISA Type Question 11 : An IS Audit
or while conducting an IS audit assignment collects various evidences. After evaluating he finds that audit evidence are reliable & pertinent but not sufficient. What will be MOST appropriate course Read more:Evidence
CISA Exam - Important Types of Antivirus / Antimalware 2008-06-23 09:25:00 CISA Quick Tips: 10 Types of Antimalware / Types of Viurses - You must know for your CISA Exam: Signature Based- detects known viruses 2. Behaviour based. – can detects unknown viruses based on their behaviour (abnormal behaviour). Today I shall again present one unmatched table with two columns. You have
CISA, CISM, CGEIT December Exam Registration Now Open 2008-07-17 19:29:00 The 13 December
2008 CISA, CISM and CGEIT certification exams are now open for registration. After this December date, June 2009 will be the next opportunity to sit for an exam. To register for the...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more:Registration
CISA Made Easy Blog - Your Friend in CISA Preparation 2008-07-16 07:30:00 Dear Readers,
I shall be on vacation for next few days.So, publication will not be there for a couple of days.Please, bear with us.
Now this blog contains a lot of material to shape your CISA...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
How to plan a Penetration Test 2008-07-15 05:12:00 CISA Quick Tips 08-1507
When an IS Auditor work as a hacker? This is a common misconception that hackers are basicaly bad guys but believe the are social and ethical in nature and bad guys are...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Importance of Exception Report in IS Audit 2008-07-14 03:05:00 CISA Quick Point 08-1407
Let us know first what is an Exception.
Any deviation from the set standard is an Exception.
Examples.
1. If we take an financial organization where only three cash...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more:Audit
Data Integrity for CISA Exam 2008-07-11 06:18:00 CISA Quick Tips: 008-1107
A good Database Management System (DBMS)must ensure completeness,accuracy,authenticity,correctness and relevancy of data it contains.
To ensure this various machinisms /...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more:Integrity
Bridges for CISA exam 2008-07-10 07:09:00 CISA Quick Point 08-10-07
I am happy to receive your comments and a slight confusion.Some one wanted to know about number of ports in repeator.
I have seen 4, 8 and 16 ports repeaters only.They...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more:Bridges
Repeator a LAN device for CISA Exam 2008-07-09 07:14:00 CISA Type Point 08-0807:
If you are not an expert in networking you need not worry. I shall try my best to present you the concepts in simplest form. Today i shall be discussing Repeator, a LAN...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Data dictionary for CISA exam 2008-07-08 07:49:00 CISA Quick Tips 22:
This is an easy topic and I believe easy topic like this should be carefully studied. People often do mistake in easy topics.
Before knowing data dictionary let us know what is...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Integrated Test facility for CISA Exam 2008-07-07 07:27:00 CISA Quick Point 21.
CASE Study: I have seen an IS auditor while auditing an RDBMS, put some test data in live environment. Later on after completion of audit he could not remove the test data...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more:Integrated
Certificate Authority for CISA Exam - its all about trust 2008-07-05 10:01:00 CISA Quick Tips 20:
CISA quick tips are published every week from Monday to Friday.Saturdays and Sundays I want them to go through my archived quick tips.Due to increase in your response and hits...
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more:Certificate
, Authority
, trust
Important Backup Considerations for BCP for CISA Preparation 2008-07-04 09:22:00 CISA Quick Tips 19:
Backup is very important for most of the business and thus for Business Continuity.
An IS auditor while auditing/evaluating the backup Policy should see:
1....
[[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more:Considerations
Recommend Site To A Friend
