of Past Exam Questions:
Answers in ICAI-ISCA Study Material Page
1(b) Discuss the objectives and goals of
Business Continuity Planning
6(a) What do you understand by the term
Disaster? What procedural plan to you suggest for disaster recovery?
6(b) Describe the methodology of
developing a business continuity plan?
6(c) Briefly explain the various types
of system’s back-up for the system and data together
4(a) As a system auditor, what control
measures will you check to minimize threats, risks and exposures in a
4(c) What are the audit tools and
techniques used by a system auditor to ensure that disaster recovery
plan is in order? Briefly explain them
What analysis should be done for
understanding the degree of potential loss (such as reputation damage,
regulation effects) of an organisation? Enumerate the tasks to be
undertaken in this analysis. In what ways the information can be
obtained for this analysis?
3(b) A company has decided to outsource
a third party site for its alternate back-up and recovery process. What
are the issues to be considered by the security administrator while
drafting the contract?
“Technology risk assessment
needs to be a mandatory requirement for project to identify single
point of failures” - Justify