The first concern of an IS auditor should be to establish that the proposal meets the needs of the business, and this should be established by a clear business case. Although compliance with security standards is essential, as is meeting the needs of the users and having users involved in the implementation process, it is too early in the procurement process for these to be an IS auditors first concern

The IS auditor's PRIMARY concern when auditing the proposed acquisition of new computer hardware is B. the new hardware meets established security standards. Ensuring that the new hardware meets established security standards is crucial for maintaining the confidentiality, integrity, and availability of data and systems. It is essential to assess the security features and controls of the hardware to prevent potential vulnerabilities or weaknesses that could be exploited by malicious actors. While options A, C, and D are also important considerations, the security of the hardware should take precedence as it forms the foundation for a secure and reliable IT infrastructure.

The PRIMARY concern of an IS auditor in auditing the proposed acquisition of new computer hardware should be whether the new hardware meets established security standards. This is because security is a critical component in any information system and the hardware is an integral part of the system. Therefore, ensuring that the new hardware meets established security standards should be the top priority for an IS auditor. The other options (establishing a business case, including a visible audit trail, and meeting user requirements) are also important, but they are secondary to security concerns.

B, bcos as an auditor- I will be less concerned if a business case has been established and more concerned if the h/w meets the security-standards

An IS auditor's primary concern is to ensure that the proposal meets business needs, which should be established through a clear business case​​

Answer: A

always business case