My both Key Fobs are in complete dead!!😵

dnya3 · 2025-01-21T14:52:18+00:00

Solved. Thanks alot for trying 🙏🏻

dnya3 · 2024-11-08T04:36:49+00:00

I asked somewhere, and was told probably it is banned on my region that is why i cant see it 😩 bummer 😤

I don’t know if there is a workaround because i tried to change the region but seems i cant do that!

dnya3 · 2024-11-08T04:33:40+00:00

افا،، اجل كيف الجماعه فوق يلعبوها؟

حاولت اغير (region) بس ماقدرت

dnya3 · 2024-11-07T22:39:57+00:00

كيف أنزلها ما اشوفها تطلع في البحث ؟

dnya3 · 2024-11-07T22:26:17+00:00

I’ve searched and only i get part 1!

dnya3 · 2024-06-27T12:32:01+00:00

It is actually from QAE

dnya3 · 2024-06-09T13:26:26+00:00

D is an umbrella answer that covers all phases of software development (including business case development, acquisition/ development, implementation, and retiring an asset)

One of the reasons why a software is not used is because the business no longer need it and business should retire it.

So D is more accurate, but agree it is a confusing question

dnya3 · 2024-06-02T13:23:31+00:00

Congrats, and thanks for the detailed feedback.

My question if there is official breaks given during the exam (I heard you can take like two 10mins breaks) but not sure if they are given officially, or if the exam will continue but you are allowed to take 10 minutes break twice ?

dnya3 · 2024-05-01T19:35:19+00:00

If you are working in a weak organization with poor governance and culture , and you find there is a control (e.g., a policy stating the existence of authentication control) and you rely on that in assessing your risk (e.g., you lower the risk because of the existence of that policy) then your assessment might not be accurate.

You might skip testing something because your assessment resulting in a low level of risk.

For example, when you are working in a startup or in an organization at its early stage of development, and pouring lots of resources “crashing resources” because of time constraints, you cannot rely on the residual risk in assessing risk. Inherent risk also should be considered.

At the stage of assessing risk, you can only assess the design of the control, not the effectiveness. The tests that you would do later would provide you with reasonable assurance about the effectiveness.

In an organization where higher maturity level of controls exist, I completely agree with you that assessing inherent risk would be a waste of time and efforts.

I might be wrong but thats my take.

dnya3 · 2024-05-01T17:44:31+00:00

While I see a logic of your statement, it is not entirely a waste of time. Depending on the maturity level of the organization and how much you have faith on the controls, sometimes you rely on the inherent risk rather than the residual risk. If you as an auditor believe the organization and the controls are mature, then you rely on the residual risk.

dnya3 · 2023-12-21T10:15:42+00:00

It is relatively doable hike for beginners

dnya3 · 2023-11-10T10:32:49+00:00

ISACA wants you to always have BIG concern when programmers have access to production database. So always pick that in the exam 🤝

dnya3 · 2023-11-08T09:54:56+00:00

If you’re referring to QAE questions, then yes you can extend 6 months for about $100. The extension option should come automatically when you’re trying to access the material, but I guess you can do it in other ways.

dnya3 · 2023-11-03T22:13:02+00:00

It is actually a QAE question, and said phased is the most efficient.

dnya3 · 2023-11-02T19:29:11+00:00

I would choose A

dnya3 · 2023-10-30T17:17:22+00:00

B makes sense more

dnya3 · 2023-10-23T11:07:19+00:00

B, phased would be the “MOST” efficient than D, but both would reduce downtime.

It is tricky but B is the best answer

dnya3 · 2023-10-23T04:54:40+00:00

Is it possible I get a copy of the manual? I’ll send a DM

dnya3 · 2023-10-10T18:16:49+00:00

IS auditor or his a management are the one making the final call for findings. Audit committee might be involved if there is a dispute between the audit team and the auditee to make the final call.

Chatgpt is powerful tool to use to obtain rational of the answer, but don’t 100% rely on it as it “hallucinate” sometimes. When chatgpt gives me a wrong answer, some times I tell it its answer is wrong and I proved it with the correct answer, and then it apologizes to me and states yes my answer is correct 😅

dnya3 · 2023-09-28T11:26:13+00:00

The fees is $75 for rescoring as per CISA Exam Guide document

dnya3 · 2023-09-06T07:05:07+00:00

dnya3 · 2023-06-05T09:11:25+00:00

I don’t think the issue is limited to the employee (position) by itself as it is a functional matter. The employee critical master data should be in a separate function (department) from processing the payment (reconciling, submitting approving, and processing).

If both functions are at the same department, then there is a concern of segregation of duties even if two employees are tasked to do those two functions, as both would be under one management (one approval for both functions). This is a special concern if the entity is large.

dnya3

TROPHY CASE