During an information security audit, an auditor discovers that the current disaster recovery plan was developed three years ago but never tested. There have been significant changes to information systems since the plan was developed. The auditor should:
A) Ask management to test the recovery plan immediately.
B) Recommend that management and users update and test the recovery plan.
C) Update the recovery plan for management as part of the review.
D) Review the recovery plan and report weaknesses to management.
Correct Answer:
Verified
Q166: During an audit of a major contract,
Q167: The most effective method of reporting engagement
Q168: An auditor evaluating excessive product rejection rates
Q169: Which of the following is the correct
Q170: To furnish useful and timely information and
Q172: During a review of performance measures in
Q173: Which of the following is a red
Q174: What is the primary reason for having
Q175: Which of the following is a red
Q176: Which of the following is typically not
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents