Which of the following should be of MOST concern to a risk practitioner reviewing the system development life cycle (SDLC)?

QuestionsCategory: CRISCWhich of the following should be of MOST concern to a risk practitioner reviewing the system development life cycle (SDLC)?
Admin Staff asked 6 months ago
Which of the following should be of MOST concern to a risk practitioner reviewing the system development life cycle (SDLC)?

A. Segregation of duties controls are overridden during user testing phases

B. Testing is completed by IT support users without input from end users

C. Data anonymization is used during all cycles of end user testing

D. Testing is completed in phases with user testing scheduled as the final phase








 

Suggested Answer: B



This question is in CRISC exam 
For getting Risk and Information Systems Control Certificate


Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by ISACA.
The website does not contain actual questions and answers from ISACA's Certification Exams.
Trademarks, certification & product names are used for reference only and belong to ISACA.

Next Post

Recommended

Welcome Back!

Login to your account below

Create New Account!

Fill the forms below to register

Retrieve your password

Please enter your username or email address to reset your password.