Certified in Risk and Information Systems Control (CRISC) — Question 875
Which of the following is MOST likely to be identified from an information systems audit report?
Answer options
- A. Data ownership
- B. Resiliency
- C. Vulnerabilities
- D. Regulatory requirements
Correct answer: C
Explanation
The correct answer is C, as vulnerabilities are a key focus in information systems audits to identify security weaknesses. While data ownership, resiliency, and regulatory requirements are important aspects, they are not as directly related to the specific findings that arise from an audit focused on system security and integrity.