IIA-ACCA 無料問題集「IIA ACCA CIA Challenge」
Which of the following steps should an internal auditor take during an audit of an organization's business continuity plans?
1. Evaluate the business continuity plans for adequacy and currency.
2. Prepare a business impact analysis regarding the loss of critical business.
3. Identify key personnel who will be required to implement the plans.
4. Identify and prioritize the resources required to support critical business processes.
1. Evaluate the business continuity plans for adequacy and currency.
2. Prepare a business impact analysis regarding the loss of critical business.
3. Identify key personnel who will be required to implement the plans.
4. Identify and prioritize the resources required to support critical business processes.
正解:B
解答を投票する
Management is developing and implementing a risk and control framework for use throughout the organization. Which of the following elements should be included in the organization's control framework?
1. Appropriate levels of authority and responsibility.
2. Supervision of staff and appropriate review of work.
3. The seniority of management in the organization.
4. The ability to trace each transaction to an accountable and responsible individual.
1. Appropriate levels of authority and responsibility.
2. Supervision of staff and appropriate review of work.
3. The seniority of management in the organization.
4. The ability to trace each transaction to an accountable and responsible individual.
正解:D
解答を投票する
Which of the following are typical responsibilities for operational management within a risk management program?
1. Implementing corrective actions to address process deficiencies.
2. Identifying shifts in the organization's risk management environment.
3. Providing guidance and training on risk management processes.
4. Assessing the impact of mitigation strategies and activities.
1. Implementing corrective actions to address process deficiencies.
2. Identifying shifts in the organization's risk management environment.
3. Providing guidance and training on risk management processes.
4. Assessing the impact of mitigation strategies and activities.
正解:A
解答を投票する
Which of the following are likely indicators of ineffective change management?
1. IT management is unable to predict how a change will impact interdependent systems or business processes.
2. There have been significant increases in trouble calls or in support hours logged by programmers.
3. There is a lack of turnover in the systems support and business analyst development groups.
4. Emergency changes that bypass the normal control process frequently are deemed necessary.
1. IT management is unable to predict how a change will impact interdependent systems or business processes.
2. There have been significant increases in trouble calls or in support hours logged by programmers.
3. There is a lack of turnover in the systems support and business analyst development groups.
4. Emergency changes that bypass the normal control process frequently are deemed necessary.
正解:B
解答を投票する
An auditor in charge was reviewing the workpapers submitted by a newly hired internal auditor. She noted that the new auditor's analytical work did not include any rating or quantification of the risk assessment results, and she returned the workpapers for correction. Which section of the workpapers will the new auditor need to modify?
正解:B
解答を投票する
It is close to the fiscal year end for a government agency, and the chief audit executive (CAE) has the following items to submit to either the board or the chief executive officer (CEO) for approval. According to IIA guidance, which of the following items should be submitted only to the CEO?
正解:A
解答を投票する