Are you studying for the CEH or CISSP certifications?
Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
An IT auditor discovers that a system vendor is determining when system patches are implemented into production. What is the highest concern an IT auditor would have with this practice that the IT auditor has not evaluated?
Any benefits realized with the installation of the patch on the operational systems.
Delaying deployment until testing the impact of the patch.
The need to notify end users of new patches.
The training requirements for users after applying the patch.
Deploying patches without testing exposes an organization to the risk of system disruption or failure. Normally, there is no need for training or advising users when a new operating system patch has been installed. Any beneficial impact is less important than the risk of unavailability that could be avoided with proper testing. EDIT: I don't even understand the English written here for this question. It's missing some punctuation or another article (i.e. "the") somewhere. This questions needs to be reworked/reworded.<--This. The question reads like a cut and paste mistake. Hard to follow. EDIT: Missing punctuation? Heck, I'd say it's missing at least an entire sentence. Very hard to follow indeed.
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.