Certified Information Systems Auditor (CISA) — Question 766

Which of the following should be of concern to an IS auditor reviewing an organization's network to ensure attack vectors from the Internet are minimized?

Answer options

• A. The organization employs different types of firewalls in the demilitarized zone (DMZ).
• B. The organization's email server is in the demilitarized zone (DMZ).
• C. A data loss prevention (DLP) system is behind the organization's firewalls.
• D. A router is Internet-facing at the network perimeter.

Correct answer: D

Explanation

Option D is correct because having an Internet-facing router can expose the network to external threats, making it a significant concern for an IS auditor. Options A and B are not as critical since different firewalls and email servers in the DMZ are standard practices for security. Option C is also less concerning as having a DLP system behind firewalls is a protective measure rather than a vulnerability.