#1) One of the following does not apply (as a general rule) to
all seven domains
of an IT infrastructure?
a. incident response
b. service level agreements
c. disaster recovery plan
d. change control process
#2) This original auditing standard enables organizations who
process financial
transactions and data to provide a uniform report that discloses
internal control
activities and processes to customers, in compliance with the
requirements
contained in the Sarbanes-Oxley Act (section 404).
a. SAS 70
b. SSAE 16
c. ISO 27006
d. SSAE 18
Hi, I would love to answer this question for you. I hope you would love an answer and get a clear idea related to the same. So not wasting much time let's get started.
The correct answer to be selected.
Ans.1 (d) change control process This is a process in the project management so as not considering the IT infrastructure.
Ans.2 (b) SSAE 16 The statement on standards for Attestation Engagement no. 16 is specifically to evaluate the internal control and an impact the service organization may have on the organization's control environment.
I hope you have got an answer for your question.
Please thumbs up to an answer and do comment for any queries
Thanks and Happy to help :)
HAPPY LEARNING
Get Answers For Free
Most questions answered within 1 hours.