CISA Domain 1A Practice Test 001

This practice test covers Domain 1 (Information Systems Auditing Process) Subdomain A (Planning) from the CISA exam content outline.

These questions are inspired by the ISACA CISA exam and are designed to help you test your knowledge of information systems auditing, governance, risk management, IT operations, business resilience, and information asset protection.

These are not official exam questions or brain dumps. They are original scenario-based questions created to reflect the audit judgment, control evaluation, and risk-based decision-making skills tested in the CISA exam.

Note: CISA and Certified Information Systems Auditor are registered trademarks of ISACA. This content is not affiliated with or endorsed by ISACA.

To choose CISA practice tests based on specific domains and subdomains, click that link.

CISA Practice Test — 1A (Planning)
10 questions • Single best answer
Question 1
During the planning of an external audit at a healthcare provider, an IS auditor discovers that a close relative manages the IT department being reviewed. What should the auditor do FIRST?
    Question 2
    A financial institution asks internal audit to determine whether its data retention practices satisfy a specific regulatory requirement. Which type of audit is MOST appropriate?
      Question 3
      An IS auditor is developing the annual audit plan for an enterprise IT function. Which factor should have the GREATEST influence on which areas receive audit coverage?
        Question 4
        A government agency installs software that blocks unauthorized changes to production systems before they can be applied. How is this control BEST classified?
          Question 5
          While planning an audit of a manufacturing firm's financial applications, an IS auditor must decide which control weaknesses could significantly affect the financial statements. This determination BEST reflects the concept of:
            Question 6
            An IS auditor is uncertain whether a particular audit procedure is required by professional standards. Which source establishes MANDATORY requirements the auditor must follow?
              Question 7
              During planning, an IS auditor finds that a small IT team cannot achieve adequate segregation of duties between development and production. Which compensating control provides the BEST assurance?
                Question 8
                Before assigning resources for the yearly plan, an IS auditor compiles an audit universe. What is the PRIMARY purpose of the audit universe?
                  Question 9
                  Management asks internal audit to review a new payroll system before go-live to provide assurance on the adequacy of control design. This engagement is BEST described as a:
                    Question 10
                    An IS auditor is offered a paid role to design the access controls for a cloud system the auditor is later scheduled to audit. What is the auditor's BEST course of action?

                      Leave a Comment

                      Your email address will not be published. Required fields are marked *

                      Scroll to Top