Which of the following should be of MOST concern to a risk practitioner reviewing the system development life cycle (SDLC)? A. Segregation of duties controls are overridden during user testing phases B. Testing is completed by IT support users without input from end users C. Data anonymization is used during all cycles of end user testing D. Testing is completed in phases with user testing scheduled as the final phase  Suggested Answer: B This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer