HCISPP Question #40: Real Exam Question with Answer & Explanation

Sign in or unlock HCISPP to reveal the answer and full explanation for question #40. The question stem and answer options stay visible for context.

Third-Party Risk Management

Question

An organization is outsourcing its payroll system and is requesting to conduct a full audit on the third- party information technology (IT) systems. During the due diligence process, the third party provides previous audit report on its IT system. Which of the following MUST be considered by the organization in order for the audit reports to be acceptable?

Options

AThe audit assessment has been conducted by an independent assessor.
BThe audit reports have been signed by the third-party senior management.
CThe audit reports have been issued in the last six months.
DThe audit assessment has been conducted by an international audit firm.

Unlock HCISPP to see the answer

You've previewed enough free HCISPP questions. Unlock HCISPP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock HCISPP - $49.99 / 30 days Sign in

Topics

#Third-party risk management#Vendor due diligence#Audit report acceptance#Information system outsourcing

Full HCISPP Practice Browse All HCISPP Questions