Which of the following is MOST important to consider when auditing an organization's AI procedures?
A.
Frequency of AI system updates to enhance security
B.
Employee training on recognized AI best practices
C.
Backup and recovery in the event of an AI data breach
D.
AI data validation and filtration to prevent data poisoning
Answer:
D
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 2
When auditing the transparency of an AI system, which of the following would be the MOST effective way to understand the model's decision-making process?
A.
Evaluating the diversity of the training data set
B.
Analyzing the complexity of the algorithms used
C.
Assessing the computational cost of the model
D.
Reviewing the explainability of AI outputs
Answer:
D
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 3
The PRIMARY purpose of maintaining an audit trail in AI systems is to:
A.
Facilitate transparency and traceability of decisions.
B.
Analyze model accuracy and fairness.
C.
Measure computational efficiency.
D.
Ensure compliance with regulatory standards for AI.
Answer:
A
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 4
A digital bank utilizes an AI system to generate credit scores. Which of the following would BEST mitigate the risk of sudden and unexplained changes in a borrower’s credit score?
A.
Ensuring the system is periodically reviewed and calibrated by human experts to maintain stability in predictions
B.
Using only data from the last six months to one year to avoid outdated information affecting the credit score
C.
Allowing the AI to operate fully autonomously to prevent processing delays
D.
Obtaining and validating the credit scores from third-party agencies to cross-check AI-generated results
Answer:
A
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 5
Which of the following AI system characteristics would BEST help an IS auditor evaluate the system's algorithm?
A.
The AI system algorithm uses training data to inform decision output.
B.
The AI system provides multiple options for model training.
C.
The AI system provides transparent justification of decisions.
D.
The AI system uses archived transaction data to provide decisions.
Answer:
C
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 6
An IS auditor is auditing an organization’s data governance framework. The primary objective is to provide assurance that data management practices are standardized to support a trustworthy AI system. Which of the following should be the auditor's MOST important consideration?
A.
Retention of stored data
B.
Portability of data
C.
Data practices for training models
D.
Accountability for data management
Answer:
D
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 7
Which of the following is an IS auditor's MOST important course of action when determining whether source data should be entered into approved generative AI tools to assist with an audit?
A.
Validate that the tool is leveraging the latest model.
B.
Validate that the tool provides a privacy notice.
C.
Determine whether any AI model hallucinations have occurred.
D.
Determine whether the information is reliable.
Answer:
D
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 8
Which of the following is an IS auditor MOST likely to use in order to ensure an AI model has the ability to make correct predictions?
A.
Adversarial testing
B.
Group analysis
C.
Latency testing
D.
Confusion matrix
Answer:
D
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 9
Which of the following is the BEST way to support the development and design of high-risk AI systems?
A.
Regularly back up the AI system's data to a secure, offsite location.
B.
Conduct regular training sessions for users on data privacy.
C.
Ensure the availability of trustworthy data sets.
D.
Implement multi-factor authentication (MFA) for all users accessing the AI system.
Answer:
C
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 10
A healthcare organization uses patient data to train an AI model for early disease detection. Which of the following practices provides the BEST assurance that personal data is secure and its integrity is maintained?
A.
Encrypting stored data to reduce exposure and log access
B.
Updating the AI model with new data and tracking changes
C.
Implementing strict data access controls and conducting security tests
D.
Anonymizing patient data and performing regular quality checks
Answer:
D
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 11
Which of the following should be done FIRST when an attacker exfiltrates sensitive information from an AI model?
A.
Implement rate limiting and query restrictions to reduce exploitation attempts.
B.
Isolate impacted systems until the attack vector is identified.
C.
Rebuild the AI model using a more secure architecture.
D.
Inform regulators and affected stakeholders of a potential data breach.
Answer:
B
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 12
Which of the following is the MOST important purpose of conducting a risk assessment for AI models within an organization?
A.
Categorizing data used by the AI model
B.
Defining mitigation strategies for AI deployment
C.
Monitoring AI model performance on an ongoing basis
D.
Determining whether AI model outputs align with established use cases
Answer:
B
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 13
An organization is adopting AI for its procurement and inventory teams, raising concern from stakeholders that they will lose their jobs due to AI. Which of the following is the BEST way for the IS auditor to assess whether the potential negative impacts were minimized?
A.
Review human-centered design practices to determine how they were considered.
B.
Review the AI roadmap for short-term and long-term milestones.
C.
Review how the project management team collected feedback in engagement activities.
D.
Review the current state assessment of how AI may impact the organization.
Answer:
A
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 14
An IS auditor is looking to expedite reporting for an audit with complex issues. Which of the following would be the MOST effective way for the auditor to use generative AI?
A.
Developing action items discussed in closing meetings for management action plans
B.
Developing a draft of an executive summary based on detailed findings and audit scope
C.
Revising audit conclusions with precise verbiage to describe the audit observations
D.
Revising audit background and scope information based on new information from management
Answer:
B
User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
0/ 1000
Question 15
Which of the following is the PRIMARY purpose of an AI acceptable use policy?
A.
Establishing guidance on the ethical use of AI
B.
Outlining AI usage monitoring procedures
C.
Educating employees on where to find and how to use AI tools
D.
Explaining the distinction between different types of AI