Isaca Certified Information Systems Auditor CISA Question # 379 Topic 38 Discussion

CISA Exam Topic 38 Question 379 Discussion:

Question #: 379

Topic #: 38

Which of the following provides the MOST useful information to an IS auditor when selecting projects for inclusion in an IT audit plan?

Project charter

Project plan

Project issue log

Project business case

Get Premium CISA Questions

Explanation

A project business case is a document that describes the rationale and justification for initiating a project, based on its expected costs, benefits, risks, and feasibility. A project business case provides the most useful information to an IS auditor when selecting projects for inclusion in an IT audit plan, because it helps the IS auditor to:

Understand the purpose, scope, objectives, and deliverables of the project

Assess the alignment of the project with the organization’s strategy, vision, and goals

Evaluate the value proposition and return on investment of the project

Identify the key stakeholders, sponsors, and owners of the project

Analyze the potential risks and issues associated with the project

Compare and prioritize the project with other competing projects

The other possible options are:

A. Project charter: A project charter is a document that formally authorizes and defines the high-level scope, roles, responsibilities, and authority of a project. A project charter provides some useful information to an IS auditor when selecting projects for inclusion in an IT audit plan, but it is not the most useful information. A project charter does not provide enough details about the costs, benefits, risks, and feasibility of the project, which are essential for evaluating its suitability for an IT audit plan.

B. Project plan: A project plan is a document that outlines the detailed scope, schedule, budget, resources, quality, and communication plans of a project. A project plan provides some useful information to an IS auditor when selecting projects for inclusion in an IT audit plan, but it is not the most useful information. A project plan does not provide enough information about the rationale, justification, value proposition, and alignment of the project with the organization’s strategy and goals, which are important for assessing its relevance for an IT audit plan.

C. Project issue log: A project issue log is a document that records and tracks the issues that arise during a project’s execution and how they are resolved. A project issue log provides some useful information to an IS auditor when selecting projects for inclusion in an IT audit plan, but it is not the most useful information. A project issue log does not provide enough information about the purpose, objectives, benefits, and feasibility of the project, which are critical for determining its priority for an IT audit plan.

Actual exam question for Isaca CISA exam by Rune81309 at Apr 6, 2026, 8:10:09 AM

Contribute your Thoughts:

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: force70

Isaca Certified Information Systems Auditor CISA Question # 379 Topic 38 Discussion

Isaca Certified Information Systems Auditor CISA Question # 379 Topic 38 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: force70

Isaca Certified Information Systems Auditor CISA Question # 379 Topic 38 Discussion

Isaca Certified Information Systems Auditor CISA Question # 379 Topic 38 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval