What type of risk management strategy is being employed when an organization installs two firewalls to provide protection from unauthorized access to the network?
A. Diversifying the risk that network access will not be available to legitimate, authorized users.
B. Accepting the risk that there may be attempts at unauthorized access to the network.
C. Avoiding the risk of having a direct network connection to un-trusted networks.
D. Sharing the risk that either firewall could be compromised by hackers.
If an engagement client disputes that a specific action or process is within the scope of the internal audit activity, what would be the most appropriate way for the internal audit activity (IAA) to respond?
A. Terminate the audit engagement in full because an operational audit will not be productive without the client's cooperation.
B. Terminate only the specific action or process with which the client disagrees and work to determine a substitute function that will not impede further IAA or the client-audit relationship.
C. Refer the client to the IAA's charter and the approved yearly audit plan, which includes the areas designated for audit in the current time period.
D. Seek the approval of senior management or the board in mediation, allowing an overseer to clarify the scope of the audit engagement for the client.
An internal auditor finds during an engagement that payment for the organization's general insurance policy is two months overdue. The issue is informally mentioned to the finance department which immediately submits the invoice for payment. The auditor decides to exclude this finding from the final audit report as the oversight was immediately corrected and there were no consequences because of this late payment.
Which of the following rules of conduct as described in the IIA Code of Ethics, did the auditor fail to uphold?
A. Confidentiality.
B. Objectivity.
C. Integrity.
D. Competency.
Allegations have been made that an organization's share price has been manipulated.
Which of the following would provide an internal auditor with the most objective evidence in this case?
A. Major shareholders of the organization.
B. Large customers of the organization.
C. Former members of management.
D. Former financial consultants.
According to the IIA guidance, who is responsible for periodically assessing the internal audit activity?
A. The board.
B. The chief audit executive.
C. Senior management.
D. The external auditors.
During an account receivables audit, an internal auditor found a significant number of input errors resulting in a $500, 000 balance understatement.
Which of the following is the most important question the internal auditor should ask to develop an appropriate recommendation for this finding?
A. Who?
B. How?
C. Why?
D. When?
Which of the following is not a standard technique that the chief audit executive (CAE) would use to provide evidence of supervisory review of working papers?
A. The CAE initials and dates every working paper after it has been reviewed.
B. The CAE completes an engagement working paper checklist.
C. The CAE prepares a memorandum discussing the results of the working paper review.
D. The CAE utilizes an external third party to make an objective recommendation after each working paper review.
When internal auditors are preparing workpapers for the testing stage of an engagement, which of the following guidelines should be observed?
1.
Include copies of all client files that were reviewed for the audit.
2.
Avoid the use of professional, industry-appropriate jargon and technical terms.
3.
Indicate the original sources of all data and information used in the workpapers.
4.
Leave blank space for cross-references to be completed during the post-audit process.
A. 1 and 2 only
B. 1 and 4 only
C. 2 and 3 only
D. 3 and 4 only
During an internal audit, the internal auditor compares the employee turnover rate in the area being audited with the employee turnover rate in the organization as a whole.
This is an example of which of the following analytical auditing procedures?
A. Reasonableness test.
B. Regression analysis.
C. Benchmarking.
D. Trend analysis.
During an internal audit, an organization's processing department is found to have incidences of both duplicate invoices and notices from customers that purchased goods were not received. The department under review insists that some of these reports are false and that others were isolated oversights due to understaffing.
Which of the following tests would best help the internal auditor detect fraudulent activity?
A. Check inventory levels.
B. Search for gaps in check numbers.
C. Compare vendor summaries.
D. Review raw material purchase quantities.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only IIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your IIA-CIA-PART1 exam preparations and IIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.