New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB Exam ISO-IEC-27001-Lead-Auditor Topic 4 Question 47 Discussion

Actual exam question for PECB's ISO-IEC-27001-Lead-Auditor exam
Question #: 47
Topic #: 4
[All ISO-IEC-27001-Lead-Auditor Questions]

The auditor discovered that two out of 15 employees of the IT Department have not received adequate information security training. What does this represent?

Show Suggested Answer Hide Answer
Suggested Answer: A

This scenario represents an 'audit finding.' An audit finding refers to results that indicate a deviation from the expected performance or standards. Discovering that two employees have not received the required training is an audit finding indicating noncompliance with the organization's training requirements.


by Armando at Sep 14, 2024, 08:27 PM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27001-Lead-Auditor Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Catalina
2 months ago
I'd say this is a classic case of 'security through obscurity' - out of sight, out of mind. Time to shine a light on that dark corner of the IT department!
upvoted 0 times
Ciara
1 months ago
C) Information source
upvoted 0 times
...
Lilli
1 months ago
B) Audit evidence
upvoted 0 times
...
Nydia
2 months ago
A) Audit finding
upvoted 0 times
...
...
Reita
2 months ago
Haha, looks like those two employees need to watch some 'Cybersecurity for Dummies' videos ASAP!
upvoted 0 times
Iesha
1 months ago
C) Information source
upvoted 0 times
...
Mollie
1 months ago
B) Audit evidence
upvoted 0 times
...
Devora
2 months ago
A) Audit finding
upvoted 0 times
...
...
Henriette
2 months ago
But could it also be considered audit evidence of a potential risk?
upvoted 0 times
...
Minna
2 months ago
I agree with Latia, it shows a gap in training.
upvoted 0 times
...
Zena
3 months ago
Hmm, I'm not so sure. Couldn't this also be considered an information source for the auditor to further investigate the training processes?
upvoted 0 times
Arlette
1 months ago
It could be both an audit finding and an information source for further investigation.
upvoted 0 times
...
Leonor
1 months ago
C) Information source
upvoted 0 times
...
Desirae
2 months ago
B) Audit evidence
upvoted 0 times
...
Youlanda
2 months ago
A) Audit finding
upvoted 0 times
...
...
Chauncey
3 months ago
I agree, this is definitely audit evidence that the company needs to address their security training program.
upvoted 0 times
Tamar
2 months ago
C) Information source
upvoted 0 times
...
Cristina
2 months ago
B) Audit evidence
upvoted 0 times
...
Twila
2 months ago
A) Audit finding
upvoted 0 times
...
...
Flo
3 months ago
This seems like a clear-cut audit finding to me. Two out of 15 employees lacking proper training is definitely a red flag.
upvoted 0 times
Malcolm
2 months ago
Yes, it's important to address this issue as soon as possible.
upvoted 0 times
...
Cassie
2 months ago
I agree, it's definitely an audit finding.
upvoted 0 times
...
Sage
2 months ago
C) Information source
upvoted 0 times
...
Kathrine
3 months ago
B) Audit evidence
upvoted 0 times
...
Omer
3 months ago
A) Audit finding
upvoted 0 times
...
...
Latia
3 months ago
I think it's an audit finding.
upvoted 0 times
...

Save Cancel