Certified Information Systems Auditor (CISA) — Question 1189

An organization has decided to reengineer business processes to improve the performance of overall IT service delivery. Which of the following recommendations from the project team should be the GREATEST concern to the IS auditor?

Answer options

• A. Disable operational logging to enhance the processing speed and save storage.
• B. Adopt a service delivery model based on insights from peer organizations.
• C. Delegate business decisions to the chief risk officer (CRO).
• D. Eliminate certain reports and key performance indicators (KPIs).

Correct answer: A

Explanation

Disabling operational logging can significantly increase risks by preventing the organization from tracking system activities, which is crucial for auditing and security purposes. The other options, while they may have implications, do not pose as immediate and severe risks to the integrity and accountability of IT service delivery as turning off logging does.