Question: A third party was engaged to develop a business application. Which of the following would an information security manager BEST test for the existence of back doors?
A.) System monitoring for traffic on network ports
B.) Security code reviews for the entire application
C.) Reverse engineering the application binaries
D.) Running the application from a high-privileged account on a test system

Download pdf (with explanations) edition of this exam.