New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 CISSP Exam - Topic 2 Question 85 Discussion

Actual exam question for ISC2's CISSP exam
Question #: 85
Topic #: 2
[All CISSP Questions]

What is the PRIMARY objective for conducting an internal security audit?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Vincent at Apr 12, 2024, 12:30 AM

Limited Time Offer

25%

Off

Get Premium CISSP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Annamae
3 months ago
I thought it was to check if SOPs are followed, not just documented.
upvoted 0 times
...
Margurite
3 months ago
Wait, are we sure it's not just about documentation?
upvoted 0 times
...
Junita
3 months ago
Definitely D! That's the main goal of an audit.
upvoted 0 times
...
Beata
4 months ago
I think it's more about verifying personnel knowledge.
upvoted 0 times
...
Malcom
4 months ago
It's all about making sure security controls are effective!
upvoted 0 times
...
Argelia
4 months ago
I’m a bit confused; I thought the primary objective was to check if personnel know their roles, but now I’m thinking it’s more about the effectiveness of controls.
upvoted 0 times
...
Alyce
4 months ago
I feel like option C about best practices is important, but it might not be the main focus of an internal audit.
upvoted 0 times
...
Edison
4 months ago
I remember practicing a question about verifying documentation, but I’m not sure if that’s the primary objective here.
upvoted 0 times
...
Nell
5 months ago
I think the main goal of an internal security audit is to ensure that security controls are effective, so I might lean towards option D.
upvoted 0 times
...
Lorrine
5 months ago
I'm a little confused by the wording of this question. Are they looking for the single most important objective, or just a general purpose of an internal audit? I'll have to make an educated guess on this one.
upvoted 0 times
...
Maynard
5 months ago
Okay, I've got this. The primary objective of an internal security audit is to verify that the applicable security controls are implemented and effective. That's option D, so that's my answer.
upvoted 0 times
...
Tracie
5 months ago
Hmm, I'm a bit unsure about this one. The options all seem related to security audits, but I'm not sure which one is the PRIMARY objective. I'll have to think this through carefully.
upvoted 0 times
...
Kayleigh
5 months ago
This seems like a straightforward question about the purpose of an internal security audit. I'll carefully read through the options and choose the one that best fits the primary objective.
upvoted 0 times
...
Sharen
5 months ago
I'm a little confused by the wording of this question. I'm not sure if "pReference:" is a typo or if it's referring to some specific term I'm not familiar with. I'm going to have to guess on this one, but I'll go with B just to be safe.
upvoted 0 times
...
Dudley
5 months ago
I think adding a third service contract could make things more complicated for Service Consumer C. It would be better to ensure they use the existing contracts instead, but I'm not entirely confident.
upvoted 0 times
...
Royal
5 months ago
This question seems straightforward, I think I can handle it.
upvoted 0 times
...
Gwenn
5 months ago
Okay, let's think this through step-by-step. The key is to match the appropriate TARA strategy to each risk based on the information provided.
upvoted 0 times
...
Farrah
9 months ago
Wait, is this a trick question? I bet the answer is D, but I'm also tempted to go with C just to see if I can outsmart the test-writers. Where's the fun in an easy exam, right?
upvoted 0 times
...
Cecily
9 months ago
This is a tough one, but I think D is the correct answer. Verifying the implementation and effectiveness of security controls just seems like the most critical piece of an internal audit.
upvoted 0 times
...
Breana
9 months ago
Haha, I bet the person who wrote this question was trying to trick us! Personally, I'm going with D. Sounds like the most direct way to ensure the system is secure.
upvoted 0 times
Misty
8 months ago
That's a good point too. It's important to establish security controls based on industry standards.
upvoted 0 times
...
Daren
8 months ago
I'm leaning towards C actually. Following best practices is crucial for maintaining security.
upvoted 0 times
...
Tayna
8 months ago
Yeah, I agree. It's not just about having the controls in place, they need to be effective.
upvoted 0 times
...
Yuette
8 months ago
Lawanda: Definitely, we need to verify that they are actually doing their job.
upvoted 0 times
...
Lawanda
8 months ago
User 2: Yeah, I agree. It's not enough to just have controls in place, they need to be effective.
upvoted 0 times
...
Fannie
8 months ago
User 1: I think D is the best choice too. It's important to make sure the security controls are actually working.
upvoted 0 times
...
Sabra
8 months ago
I think D is the best choice too. It's important to make sure the security controls are actually working.
upvoted 0 times
...
...
Sueann
10 months ago
Hmm, I'm torn between C and D here. I mean, both of those seem important, but D just feels more like the true objective to me. Gotta make sure those controls are effective, you know?
upvoted 0 times
Lovetta
9 months ago
I see your point, but I think C is also important. Following best practices for security controls is crucial for a successful audit.
upvoted 0 times
...
Georgene
10 months ago
Yeah, I think D is the most important. It's not just about having controls in place, they need to be effective.
upvoted 0 times
...
Phillip
10 months ago
I agree, D does seem like the primary objective. We need to make sure those security controls are actually working.
upvoted 0 times
...
...
Timothy
10 months ago
Wow, this is a tricky one! I'm pretty sure the answer is D, though. Verifying that security controls are actually working seems like the primary goal of an internal audit, right?
upvoted 0 times
Rory
10 months ago
User 2: Yeah, that makes sense. We need to ensure that the controls are implemented and effective.
upvoted 0 times
...
Jenelle
10 months ago
User 1: I think the answer is D too. It's important to make sure the security controls are actually doing their job.
upvoted 0 times
...
...
Florencia
11 months ago
I believe it's also crucial to verify that all systems and SOPs are properly documented to ensure compliance.
upvoted 0 times
...
Rana
11 months ago
I agree with Detra. It's important to ensure that the security controls are effective in protecting the system.
upvoted 0 times
...
Detra
11 months ago
I think the primary objective is to verify that security controls are established following best practices.
upvoted 0 times
...

Save Cancel