A bank's web-hosting provider has just completed an internal IT security audit and provides only a summary of the findings to the bank's auditor. Which of the following should be the bank's GREATEST concern?
A bank's web-hosting provider has just completed an internal IT security audit and provides only a summary of the findings to the bank's auditor. Which of the following should be the bank's GREATEST concern?
A bank's greatest concern in this scenario would be if the audit scope did not address critical areas. If critical areas are missed, it could result in security vulnerabilities that go undetected, posing significant risk to the bank. The other options, while important, do not pose as great a risk as missing critical areas in the audit.
A. Greatest concern should be the critical arears to be audited. keyword is greatest
Answer should be C because of Independence
The bank's greatest concern in this scenario is the possibility that the audit scope may not have addressed critical areas (Option A). The summary provided by the web-hosting provider may not provide the bank with sufficient information to determine whether the audit scope was adequate and whether all critical areas were assessed
yes, i also think it should be C as the question is not about auditors concern but banks concern.
Why is the answer not C? I think the question is not about content of the audit but who they submitted the audits findings to. So the bank greatest concern here is the auditors not independent of the bank
Internal auditors are independent and reliable
a is correct