What is the purpose of a security audit? MCQ with Answer and Explanation

What is the purpose of a security audit?
A. To increase system performance
B. To install new software
C. To manage employee salaries
D. To assess an organization's security posture and identify vulnerabilities
Answer: Option D
Solution (By JKExamLibrary)
A security audit is a systematic evaluation of an organization's information security policies, practices, and controls to identify vulnerabilities and ensure compliance.

This question belongs to: Computer Cyber Security

Discuss this Question (0)

No comments yet. Be the first to start the discussion!

Practice More Cyber Security Questions

Question #1 Report Error
Which of the following is a common technique used in malware distribution?
A. Email attachments
B. Firewalls
C. Antivirus software
D. Secure websites

Correct Answer: Option A


Explanation:
Malware is often distributed through email attachments, where users are tricked into opening malicious files that install malware on their systems.

This question belongs to: Computer Cyber Security
Question #2 Report Error
Which type of firewall inspects raw data payloads at the highest layer of the network stack, filtering traffic based on specific application commands and web parameters?
A. Packet Filter Gateway
B. Application Layer Firewall / Proxy Firewall
C. Stateful Connection Monitor
D. Circuit Level Interceptor

Correct Answer: Option B


Explanation:
Application firewalls operate at Layer 7 of the OSI model, analyzing specific application-level protocols (like HTTP or FTP) to block sophisticated web attacks.

This question belongs to: Computer Cyber Security
Question #3 Report Error
What type of attack vector uses a malicious payload embedded within a macro script to spread automatically through contacts when an infected spreadsheet is opened?
A. Macro Virus
B. Boot Sector Threat
C. Logic Bomb Tracking
D. Network Sniffer

Correct Answer: Option A


Explanation:
Macro viruses hijack application macro scripting automated sequences inside productivity suites, executing commands and spreading code when documents are opened.

This question belongs to: Computer Cyber Security