What is the FIRST activity to be performed if IS Auditor is - ProProfs Discuss
Topics
More
Products
More
Follow Us:
Ask a Question+ Ask Question
  1. Professional Certification
  2. CISA

What is the FIRST activity to be performed if IS Auditor is developing a risk management program?



A. Vulnerability assessment.
B. Evaluation of control.
C. Identification of assets.
D. Gap analysis.

This question is part of CISA - Mock Test - Domain 1 (100 Questions)
Asked by Hemangdoshi, Last updated: May 02, 2020

+ Answer
Request
Share

1 Answer

hemangdoshi
Hemangdoshi

Answered Jun 07, 2018

C. identification of assets.

Identification of the assets to be protected is the first step in the development of a risk management program. Steps of Risk Assessment: -First step is to identify the assets. -Second step is to identify relevant risk (vulnerability/threat) -Third step is to do impact analysis -Fourth step is prioritize the risk on the basis of impact -Fifth step is to evaluate controls. -Sixth step is to apply appropriate controls.
 

More CISA Questions

Ask Your Own Question
Search for Google images
Select a recommended image
Upload from your computer
Cancel
Search for Google images
Select a recommended image
Upload from your computer
Cancel
Search for Google images
Select a recommended image
Upload from your computer
Cancel

Email Sent
We have sent an email to your address "" with instructions to reset your password.