Certified Information Systems Auditor (CISA) — Question 1218

When establishing new integrations with a vendor, which of the following is an IS auditor's BEST recommendation to management concerning data security?

Answer options

• A. Data interchange requests should require authentication and authorization checks.
• B. Management should ensure data being shared is aligned with the acceptable use policy.
• C. Batch processing should be utilized during business hours to minimize disruptions.
• D. Transaction logs should be monitored for completeness and accuracy.

Correct answer: A

Explanation

The best recommendation is option A, as requiring authentication and authorization checks is crucial for ensuring that only authorized entities can access sensitive data. While options B, C, and D address important aspects of data security and operational efficiency, they do not directly focus on the critical need for access controls that protect data integrity during integration with vendors.