Certified Information Systems Auditor (CISA) — Question 672

An IS auditor is analyzing a sample of accesses recorded on the system log of an application. The auditor intends to launch an intensive investigation if one exception is found. Which sampling method would be appropriate?

Answer options

• A. Stratified sampling
• B. Discovery sampling
• C. Variable sampling
• D. Judgmental sampling

Correct answer: B

Explanation

Discovery sampling is suitable in this scenario because it focuses on identifying exceptions within a population, prompting a deeper investigation if any discrepancies are found. The other options, such as stratified and variable sampling, are more about estimating values or characteristics rather than specifically targeting anomalies for further scrutiny.