| π Back to Exam Syllabus | πΊ RooCloud on YouTube | π RooCloud Practice Exams |
IT Components (Part 3 of 3)
This concluding episode of the IT Components section in the ISACA Certified Information Systems Auditor (CISA) exam prep series turns to the physical hardware layer, covering what is inside a computer, the range of machine types from supercomputers to handhelds, the server roles that run an enterprise behind the scenes, the risks introduced by portable storage and wireless technologies, and the maintenance and review practices auditors should expect to see.
What this episode covers
- Computer internals β processor, logic and control units, working memory, permanent storage types, graphics processors, and input-output devices.
- Computer types β supercomputers, mainframes, high-end servers, personal computers, thin clients, laptops, and small-form devices.
- Enterprise server roles β print, file, application, web, database servers, data loss prevention gateways, appliances, and proxy server variants.
- Internet of things β how multiplying connected devices from cameras to medical gear bring both innovation and data leakage risk.
- Portable storage risks and controls β malware transfer, theft, data loss, and the encryption and port management measures that address them.
- Wireless technologies β Wi-Fi, Bluetooth, and radio frequency identification, and their convenience versus interference trade-offs.
- Hardware maintenance and audit review β scheduled servicing, maintenance records, availability reports, utilization reports, and the auditor checklist.
Watch the full episode above for the worked examples and detailed explanations of each concept.
Frequently Asked Questions
What are the key components inside a computer and how do storage types differ?
At the heart is the processor containing a logic unit, control unit, and small internal memory. Around it sit the motherboard, working memory, permanent storage, power supply, and cooling. Storage comes in two main forms: a spinning hard disk with moving parts and a solid-state drive using flash memory that is faster and more durable. Many machines also add a graphics processor, originally built for rendering but now widely used for machine learning calculations.
What roles do the main enterprise server types perform?
Print servers consolidate printing across the organization. File servers give central access to shared files and programs. Application servers run business logic for client machines. Web servers deliver pages to customers and staff. Database servers store the data others turn into information. A data loss prevention gateway inspects traffic to stop sensitive data leaving the network. Appliances such as firewalls and load balancers are specialized boxes that do one job quickly.
What risks do portable storage devices create and how are they controlled?
Portable storage devices can carry malware between machines, enable data theft at any unlocked desk, and expose data if lost or improperly removed. Their small size and high capacity make confidentiality breaches easy to carry out and hard to detect. Controls include encrypting the device so a lost drive is useless without the key, using port management software to allow only approved devices, locking idle desktops, and scanning every attached drive for malware.
What should an auditor check when reviewing hardware management?
The auditor should confirm that the acquisition plan aligns with business needs and the overall architecture, and that hardware purchases follow that plan with cost-benefit analysis. Each asset should be tagged and assigned an owner, and capacity should be monitored continuously against real utilization data. Preventive maintenance must be performed off-peak on the vendorβs schedule, and availability must be sufficient to meet the workload, with malfunctions and reruns being reviewed regularly.
π Master the ISACA CISA Exam!
Ready to test your knowledge? Access chapter-specific Multiple Choice Questions (MCQs) and full-length practice exams for the ISACA CISA certification at RooCloud.com. Solve the chapter-wise questions to reinforce this lesson before moving to the next episode.
Reference: This article is based on concepts discussed in IT Components (Part 3 of 3).