ExamGecko
Search Search Login
Home Home / IIA / IIA-CIA-Part2

IIA IIA-CIA-Part2 Practice Test - Questions Answers, Page 19

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

How should an internal auditor approach preparing a detailed risk assessment during engagement planning?
A newly promoted chief audit executive (CAE) is faced with a backlog of assurance engagement reports to review for approval. In an attempt to attach a priority for this review, the CAE scans the opinion statement on each report. According to IIA guidance, which of the following opinions would receive the lowest review priority? 1. Graded positive opinion. 2. Negative assurance opinion. 3. Limited assurance opinion. 4. Third-party opinion.
After the team member who specialized in fraud investigations left the internal audit team, the chief audit executive decided to outsource fraud investigations to a third party service provider on an as needed basis. Which of the following is most likely to be a disadvantage of this outsourcing decision?
Internal audit staff lacks the expertise to perform a fraud investigation engagement stemming from a whistleblowing incident. Which of the following is the most appropriate option for the chief audit executive?
According to the MA guidance, which of the following does the engagement work program test in a review of an organizational process?
An internal auditor wanted to determine whether company vehicles were being used for personal purposes She extracted a report that listed company vehicle numbers business units to which the vehicles are allocated travel dates, travel duration and mileage She then filtered the data for weekend dates Which of the following additional information would the auditor need?
According to an internal audit observation, the organization's rules of record management require all contracts to be registered and stored in a specific electronic system. One subsidiary has thousands of client contracts on paper, which are kept in the office because there are not enough assistants to scan the contracts into the system. Which of the following component should be added to this observation?
The external auditor has identified a number of production process control deficiencies involving several departments. As a result, senior management has asked the internal audit activity to complete internal control training for all related staff. According to IIA guidance, which of the following would be the most appropriate course of action for the chief audit executive to follow?
Which of the following is an appropriate responsibility for the internal audit activity with regard to the organization's risk management program?
An examination of the accounts payable function evidenced multiple findings with respect to segregation of duties. After management's response and action plan are received and documented in the final report, which of the following is most appropriate?

Question 181

Report
Export
Collapse

What is the primary purpose of issuing a preliminary communication to management of the area under review?

A.
To build good relations with management
A.
To build good relations with management
Answers
B.
To help management develop more responsive and timely action plans
B.
To help management develop more responsive and timely action plans
Answers
C.
To formally report medium- and high-risk observations in writing
C.
To formally report medium- and high-risk observations in writing
Answers
D.
To improve the internal audit key performance indicators
D.
To improve the internal audit key performance indicators
Answers
Suggested answer: B

Explanation:

The primary purpose of issuing a preliminary communication to management of the area under review is to help them develop more responsive and timely action plans. Preliminary communications, such as interim reports or discussions, inform management about the audit's progress, preliminary findings, and potential issues. This early communication allows management to begin addressing identified issues before the final report, leading to more timely and effective corrective actions. It also fosters collaboration and ensures management is engaged in the remediation process from the outset.

Reference: The IIA's International Standards for the Professional Practice of Internal Auditing, Standard 2410.A1 - Communication Criteria.

Question 182

Report
Export
Collapse

An internal auditor for a regional bank suspects that the head of commercial lending has been granting loans without the required collateral Which of the following sampling techniques will be most effective for investigating the auditor's suspicion?

A.
Variables sampling
A.
Variables sampling
Answers
B.
Dollar-unit sampling
B.
Dollar-unit sampling
Answers
C.
Judgmental sampling
C.
Judgmental sampling
Answers
D.
Discovery sampling
D.
Discovery sampling
Answers
Suggested answer: D

Explanation:

Discovery sampling is most effective for investigating the auditor's suspicion that the head of commercial lending has been granting loans without the required collateral. This sampling technique is designed to detect at least one occurrence of a specific characteristic (in this case, loans without collateral) within a population. It is particularly useful for identifying fraud or non-compliance with specific policies and procedures. Discovery sampling focuses on finding exceptions, making it suitable for the auditor's investigation into potential misconduct.

Reference: The IIA's Global Technology Audit Guide (GTAG) and The IIA's International Standards for the Professional Practice of Internal Auditing.

Question 183

Report
Export
Collapse

Which of the following statements is true regarding internal control questionnaires?

A.
Internal control questionnaires are useful m evaluating the effectiveness of standard operating procedures
A.
Internal control questionnaires are useful m evaluating the effectiveness of standard operating procedures
Answers
B.
internal control questionnaires provide reliable documents allowing internal auditors to cover many control procedures in little time
B.
internal control questionnaires provide reliable documents allowing internal auditors to cover many control procedures in little time
Answers
C.
Internal control questionnaires can be used by internal auditors as an interview guide
C.
Internal control questionnaires can be used by internal auditors as an interview guide
Answers
D.
Internal control questionnaires provide direct audit evidence which may need corroboration
D.
Internal control questionnaires provide direct audit evidence which may need corroboration
Answers
Suggested answer: C

Explanation:

Internal control questionnaires (ICQs) are useful tools for internal auditors to guide interviews with auditees. They help ensure that all relevant aspects of internal controls are covered systematically during the interview process. While ICQs can help in evaluating the design and existence of controls, they primarily provide a structured format for gathering information from auditees about controls in place, rather than serving as direct audit evidence themselves. Therefore, they aid in the interview process by ensuring comprehensive coverage of control-related inquiries.

Reference: The IIA's International Standards for the Professional Practice of Internal Auditing, Standard 2201 - Planning Considerations.

Question 184

Report
Export
Collapse

According to HA guidance, which of the following statements regarding audit workpapers is true?

A.
Audit reports should include the workpapers as a reference for the audit conclusions.
A.
Audit reports should include the workpapers as a reference for the audit conclusions.
Answers
B.
The internal auditor's workpapers are the primary reference for reported control deficiencies.
B.
The internal auditor's workpapers are the primary reference for reported control deficiencies.
Answers
C.
Ad-hoc communications with management of the area under review should be excluded from the workpapers.
C.
Ad-hoc communications with management of the area under review should be excluded from the workpapers.
Answers
D.
Both draft and final versions of workpapers should be saved at the end of the engagement
D.
Both draft and final versions of workpapers should be saved at the end of the engagement
Answers
Suggested answer: B

Explanation:

According to the Institute of Internal Auditors (IIA) guidance, workpapers are crucial for documenting the evidence that supports audit findings and conclusions. They serve as the primary reference for any reported control deficiencies, providing detailed documentation and justification for the audit results. Workpapers must be thorough and clearly demonstrate the basis for audit observations and recommendations. While audit reports summarize findings, the detailed support for these findings is found within the workpapers.

The Institute of Internal Auditors (IIA), International Standards for the Professional Practice of Internal Auditing (Standards), Standard 2330: Documenting Information.

IIA Practice Guide, 'Audit Workpapers.'

Question 185

Report
Export
Collapse

Which of the following are advantages of flowcharts over internal control questionnaires''

1 Flowcharts reduce the need to test whether employees are observing internal control processes

2 Flowcharts provide a visual depiction of the processes in the area under review 3. Flowcharts identify and prioritize internal control design weaknesses.

4 Flowcharts highlight the control points to help internal auditors evaluate control design

A.
1 and 3 only
A.
1 and 3 only
Answers
B.
2 and 4 only.
B.
2 and 4 only.
Answers
C.
1.2. and 3 only
C.
1.2. and 3 only
Answers
D.
2. 3 and 4 only
D.
2. 3 and 4 only
Answers
Suggested answer: B

Explanation:

Flowcharts provide a visual depiction of the processes in the area under review, helping internal auditors and stakeholders understand the workflow and identify key control points. Additionally, flowcharts highlight control points, which assist auditors in evaluating the design of controls. These visual tools make it easier to identify potential gaps or weaknesses in the control design and understand how different processes and controls interact. They do not reduce the need for testing whether employees are observing internal control processes or directly prioritize internal control design weaknesses.

Reference: The IIA's International Standards for the Professional Practice of Internal Auditing, Standard 2201 - Planning Considerations.

Question 186

Report
Export
Collapse

Which of the following statements about including consulting engagements in the annual internal audit plan is true?

A.
All requests for consulting engagements must be included in the annual internal audit plan
A.
All requests for consulting engagements must be included in the annual internal audit plan
Answers
B.
Assurance engagements must be included in the annual internal audit plan but there is no requirement to include consulting engagements
B.
Assurance engagements must be included in the annual internal audit plan but there is no requirement to include consulting engagements
Answers
C.
Consulting engagements do not need to be included m the annual internal audit plan unless requested by the board
C.
Consulting engagements do not need to be included m the annual internal audit plan unless requested by the board
Answers
D.
The acceptance of proposed consulting engagements into the annual internal audit plan may depend on their ability to add value
D.
The acceptance of proposed consulting engagements into the annual internal audit plan may depend on their ability to add value
Answers
Suggested answer: D

Explanation:

According to the International Standards for the Professional Practice of Internal Auditing (Standards) set by the Institute of Internal Auditors (IIA), internal audit functions are allowed flexibility in including consulting engagements in their annual plans. Standard 2010 -- Planning states that 'the chief audit executive must establish a risk-based plan to determine the priorities of the internal audit activity, consistent with the organization's goals.' This risk-based plan should consider the potential value-add of consulting engagements. Consulting engagements that are expected to add significant value or align with strategic objectives are often included, but not all requests need to be automatically included unless they meet these criteria.

Reference:

Institute of Internal Auditors (IIA), International Standards for the Professional Practice of Internal Auditing (Standards), Standard 2010 -- Planning.

Question 187

Report
Export
Collapse

An internal auditor is conducting an initial risk assessment of an audit area and wants to assess management's compliance with privacy laws for safeguarding customer information stored on the organization's servers. Which course of action is appropriate for this phase of the engagement?

A.
Solicit the services of a specialist information systems auditor
A.
Solicit the services of a specialist information systems auditor
Answers
B.
Obtain the most current approved copies of the organization's privacy policy
B.
Obtain the most current approved copies of the organization's privacy policy
Answers
C.
Consult with legal counsel about new privacy laws to establish appropriate criteria
C.
Consult with legal counsel about new privacy laws to establish appropriate criteria
Answers
D.
Consider the detection risk of noncompliance with the laws
D.
Consider the detection risk of noncompliance with the laws
Answers
Suggested answer: B

Explanation:

In the initial risk assessment phase, it is critical for the internal auditor to understand the current policies and procedures in place. By obtaining the most current approved copies of the organization's privacy policy, the auditor can assess whether these policies are in compliance with privacy laws and are effectively implemented. This approach provides a solid foundation for understanding the existing controls and identifying areas where there may be gaps or weaknesses. Consulting with legal counsel or a specialist can be subsequent steps if further expertise is needed, but understanding the internal policies is the primary and essential first step.

Reference:

Institute of Internal Auditors (IIA), International Standards for the Professional Practice of Internal Auditing (Standards), Standard 2210 -- Engagement Objectives.

Question 188

Report
Export
Collapse

An internal auditor is asked to determine why the production line for a large manufacturing organization has been experiencing shutdowns due to unavailable pacts The auditor learns that production data used for generating automatic purchases via electronic interchange is collected on personal computers connected by a local area network (LAN) Purchases are made from authorized vendors based on both the production plans for the next month and an authorized materials requirements plan (MRP) that identifies the parts needed per unit of production The auditor suspects the shutdowns are occurring because purchasing requirements have not been updated for changes in production techniques. Which of the following audit procedures should be used to test the auditor's theory?

A.
Compare purchase orders generated from test data input into the LAN with purchase orders generated from production data for the most recent period
A.
Compare purchase orders generated from test data input into the LAN with purchase orders generated from production data for the most recent period
Answers
B.
Develop a report of excess inventory and compare the inventory with current production volume
B.
Develop a report of excess inventory and compare the inventory with current production volume
Answers
C.
Compare the pans needed based on current production estimates and the MRP for the revised production techniques with the purchase orders generated from the system for the same period
C.
Compare the pans needed based on current production estimates and the MRP for the revised production techniques with the purchase orders generated from the system for the same period
Answers
D.
Select a sample of production estimates and MRPs for several periods and trace them into the system to determine that input is accurate
D.
Select a sample of production estimates and MRPs for several periods and trace them into the system to determine that input is accurate
Answers
Suggested answer: C

Explanation:

To test the theory that shutdowns are occurring due to outdated purchasing requirements that have not been updated for changes in production techniques, the auditor should compare the parts needed based on the most current production estimates and the revised materials requirements plan (MRP) with the purchase orders generated from the system. This comparison will help identify discrepancies between what is needed and what is being ordered, highlighting whether the system is failing to update purchasing requirements correctly. This method directly addresses the suspected cause of the shutdowns and provides clear evidence for or against the auditor's theory.

Reference:

Institute of Internal Auditors (IIA), International Standards for the Professional Practice of Internal Auditing (Standards), Standard 2310 -- Identifying Information.

Question 189

Report
Export
Collapse

An internal auditor uses a data query tool in the purchasing process to review the vendor master file for authorizations Which of the following describes the control objective likely being tested?

A.
Effectiveness
A.
Effectiveness
Answers
B.
Response
B.
Response
Answers
C.
Efficiency
C.
Efficiency
Answers
D.
Mitigation.
D.
Mitigation.
Answers
Suggested answer: A

Explanation:

In internal auditing, reviewing the vendor master file for authorizations is a test to ensure that only authorized vendors are in the system, which directly relates to the effectiveness of control measures in place. This means verifying that the controls are effective in preventing unauthorized or fraudulent vendors from being added, thereby safeguarding the organization against potential risks such as fraud, unauthorized transactions, or compliance violations.

Reference:

Institute of Internal Auditors (IIA), International Standards for the Professional Practice of Internal Auditing (Standards), Standard 2120 -- Risk Management.

Question 190

Report
Export
Collapse

Which of the following statements is true regarding the final assurance engagement report issued to management?

A.
Ratings are only used to assess the condition of an observation made by an internal auditor.
A.
Ratings are only used to assess the condition of an observation made by an internal auditor.
Answers
B.
Audit findings may be communicated to management prior to issuance of the final approved audit report.
B.
Audit findings may be communicated to management prior to issuance of the final approved audit report.
Answers
C.
Communications must be relevant logical, and free from errors before they are disseminated.
C.
Communications must be relevant logical, and free from errors before they are disseminated.
Answers
D.
The audit report must present the information in the following order (1) audit scope, (2) engagement objectives, and (3) engagement results
D.
The audit report must present the information in the following order (1) audit scope, (2) engagement objectives, and (3) engagement results
Answers
Suggested answer: C

Explanation:

According to the International Standards for the Professional Practice of Internal Auditing, particularly Standard 2420 -- Quality of Communications, internal audit communications should be accurate, objective, clear, concise, constructive, complete, and timely. Ensuring that communications are relevant, logical, and free from errors is essential for maintaining the credibility and effectiveness of the internal audit function and for providing management with reliable information for decision-making.

Reference:

Institute of Internal Auditors (IIA), International Standards for the Professional Practice of Internal Auditing (Standards), Standard 2420 -- Quality of Communications.

Total 461 questions
Go to page: of 47
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms