CISA Question #159: Real Exam Question with Answer & Explanation

Sign in or unlock CISA to reveal the answer and full explanation for question #159. The question stem and answer options stay visible for context.

Submitted by chen.hong· Apr 18, 2026Information System Auditing Process

Question

An IS auditor finds a user account where privileged access is not appropriate for the user's role. Which of the following would provide the BEST evidence to determine whether the risk of this access has been exploited?

Options

AInterview with the user's manager
BActivity log for the account
CLast logon date for the account
DDocumented approval for the account

Unlock CISA to see the answer

You've previewed enough free CISA questions. Unlock CISA for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CISA - $49.99 / 30 days Sign in

Topics

#Audit Evidence#Activity Logs#Privileged Access#Risk Exploitation

Full CISA Practice Browse All CISA Questions