ExamGecko
Search Search Login
Home Home / IIA / IIA-CIA-Part2

IIA IIA-CIA-Part2 Practice Test - Questions Answers, Page 22

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

How should an internal auditor approach preparing a detailed risk assessment during engagement planning?
A newly promoted chief audit executive (CAE) is faced with a backlog of assurance engagement reports to review for approval. In an attempt to attach a priority for this review, the CAE scans the opinion statement on each report. According to IIA guidance, which of the following opinions would receive the lowest review priority? 1. Graded positive opinion. 2. Negative assurance opinion. 3. Limited assurance opinion. 4. Third-party opinion.
After the team member who specialized in fraud investigations left the internal audit team, the chief audit executive decided to outsource fraud investigations to a third party service provider on an as needed basis. Which of the following is most likely to be a disadvantage of this outsourcing decision?
What is the primary reason that audit supervision includes approval of the engagement report?
Internal audit staff lacks the expertise to perform a fraud investigation engagement stemming from a whistleblowing incident. Which of the following is the most appropriate option for the chief audit executive?
According to the MA guidance, which of the following does the engagement work program test in a review of an organizational process?
An internal auditor wanted to determine whether company vehicles were being used for personal purposes She extracted a report that listed company vehicle numbers business units to which the vehicles are allocated travel dates, travel duration and mileage She then filtered the data for weekend dates Which of the following additional information would the auditor need?
According to an internal audit observation, the organization's rules of record management require all contracts to be registered and stored in a specific electronic system. One subsidiary has thousands of client contracts on paper, which are kept in the office because there are not enough assistants to scan the contracts into the system. Which of the following component should be added to this observation?
A code of business conduct should include which of the following to increase its deterrent effect? 1. Appropriate descriptions of penalties for misconduct. 2. A notification that code of conduct violations may lead to criminal prosecution. 3. A description of violations that injure the interests of the employer. 4. A list of employees covered by the code of conduct.
The external auditor has identified a number of production process control deficiencies involving several departments. As a result, senior management has asked the internal audit activity to complete internal control training for all related staff. According to IIA guidance, which of the following would be the most appropriate course of action for the chief audit executive to follow?

Question 211

Report
Export
Collapse

Which of the following approaches would best help an internal auditor determine whether a retailer database of 100,000 customers has nay duplicate accounts?

A.
Stratifying the customer information
A.
Stratifying the customer information
Answers
B.
Extracting the customer information
B.
Extracting the customer information
Answers
C.
Filtering the customer information
C.
Filtering the customer information
Answers
D.
Sorting the customer information
D.
Sorting the customer information
Answers
Suggested answer: D

Explanation:

Sorting the customer information is the most effective method for identifying duplicate accounts in a database of 100,000 customers. By sorting the database based on key identifiers such as customer name, address, or email, an internal auditor can quickly identify and review records that appear consecutively and have similar details, which is indicative of potential duplicates. This method is efficient and practical for handling large datasets.

Internal Audit Data Analytics Techniques

Database Management Best Practices

Question 212

Report
Export
Collapse

An internal auditor developed a list of internal and external risk considerations across the organization's processes, developed a scale to assess each risk and allocated the relative importance of each risk. When of the following approaches did the auditor take?

A.
Top-down approach
A.
Top-down approach
Answers
B.
Process-Metrix approach
B.
Process-Metrix approach
Answers
C.
Risk-factor approach
C.
Risk-factor approach
Answers
D.
Bottom up approach
D.
Bottom up approach
Answers
Suggested answer: C

Explanation:

The risk-factor approach involves developing a list of internal and external risk considerations, creating a scale to assess each risk, and allocating the relative importance of each risk. This approach allows the auditor to systematically evaluate risks based on predefined criteria and weightings, ensuring a comprehensive risk assessment across the organization's processes.

The Institute of Internal Auditors (IIA) Standards

Risk Assessment Methodologies in Internal Auditing

Question 213

Report
Export
Collapse

A healthcare organization's chief audit executive (CAE) noted that the organization's IT team relies heavily on a vendor. Therefore an IT vendor assessment review was added to the annual audit plan. During the review, the audit team discovered that the vendor had not been performing proper monitoring to ensure that the subcontractors it hired comply with the organization requirements. The organization's chief information officer (ClO) does not agree with the audit team's recommendation for the IT team to monitor the compliance level of vendor subcontractors. How should the audit team proceed to resolve this situation?

A.
Write a risk acceptance memo for the CIO to sign acknowledging the observation and indicating a willingness to accept the risk.
A.
Write a risk acceptance memo for the CIO to sign acknowledging the observation and indicating a willingness to accept the risk.
Answers
B.
Provide an example of the attestation form that vendors must use. Then, recommend that the IT team require vendors to submit the attestation form on a regular basis.
B.
Provide an example of the attestation form that vendors must use. Then, recommend that the IT team require vendors to submit the attestation form on a regular basis.
Answers
C.
Escalate the issue to the audit committee, as the CIO is unwilling to implement the recommended action plan.
C.
Escalate the issue to the audit committee, as the CIO is unwilling to implement the recommended action plan.
Answers
D.
Escalate the issue to the CAE to assess whether the ClO's reasoning is acceptable.
D.
Escalate the issue to the CAE to assess whether the ClO's reasoning is acceptable.
Answers
Suggested answer: C

Explanation:

When there is a disagreement between the audit team and management, and if the disagreement concerns a significant risk, the issue should be escalated to the audit committee. The audit committee has the authority to review and resolve such disputes. Escalating the issue ensures that the concern is addressed at the highest governance level, maintaining the integrity and effectiveness of the internal audit function.

The Institute of Internal Auditors (IIA) Standards

Internal Audit Governance and Escalation Procedures

Question 214

Report
Export
Collapse

When presenting an observation m writing which or the Mowing is usually true regarding the level of detail provided?

1. The description of the observation in the final audit report contains more detail then the description m the engagement workpapers

2. The description of the observation m the engagement workpapers contains more detail than the descriptor n a preliminary observation document

3. A preliminary observation document contains more detail than tie observation description in the final audit report

4. A preliminary observation document contains more detail than tie observation description in the engagement workpapers

A.
1 and 2
A.
1 and 2
Answers
B.
1 and 4
B.
1 and 4
Answers
C.
2 and3
C.
2 and3
Answers
D.
3 and 4
D.
3 and 4
Answers
Suggested answer: C

Explanation:

In internal auditing, the engagement workpapers typically contain more detailed descriptions of observations than the preliminary observation document because workpapers serve as the primary evidence and record of the audit procedures and findings. Similarly, a preliminary observation document generally contains more detail than the final audit report, as it serves as an initial, comprehensive documentation of the findings before they are summarized for final reporting.

The Institute of Internal Auditors (IIA) Standards

Internal Audit Documentation and Reporting Standards

Question 215

Report
Export
Collapse

Which of the following attribute sampling methods would be most appropriate to use to measure the total misstatement posted to an accounts payable ledger?

A.
Stop-or-go sampling
A.
Stop-or-go sampling
Answers
B.
Probability to proportional size sampling
B.
Probability to proportional size sampling
Answers
C.
Classical variable sampling
C.
Classical variable sampling
Answers
D.
Discovery sampling
D.
Discovery sampling
Answers
Suggested answer: B

Explanation:

Probability-proportional-to-size (PPS) sampling, also known as monetary unit sampling, is most appropriate for measuring the total misstatement in an accounts payable ledger. This method is used to determine the likelihood of individual items being selected based on their size, with larger items having a higher probability of being selected. This is particularly useful in identifying overstatements and misstatements in financial records, such as accounts payable, where the monetary value of transactions is a critical factor.

Reference:

Institute of Internal Auditors (IIA), Practice Guide -- Auditing Sampling.

Question 216

Report
Export
Collapse

Which of the following should be described in the recognition element of a typical internal audit repot?

A.
Positive aspects of the process or area under review
A.
Positive aspects of the process or area under review
Answers
B.
A brief synopsis of the process of area under review
B.
A brief synopsis of the process of area under review
Answers
C.
Outcomes and ratings of the process or area under review
C.
Outcomes and ratings of the process or area under review
Answers
D.
Report issuance and the communication process of the engagement.
D.
Report issuance and the communication process of the engagement.
Answers
Suggested answer: B

Explanation:

The recognition element of a typical internal audit report should describe a brief synopsis of the process or area under review. This section provides context and background information about the scope and focus of the audit, helping readers understand the subject matter of the audit and its significance within the organization. It sets the stage for the detailed findings and recommendations that follow in the report.

Reference:

Institute of Internal Auditors (IIA), International Standards for the Professional Practice of Internal Auditing (Standards), Standard 2410 -- Criteria for Communicating.

Question 217

Report
Export
Collapse

Which statistical sampling approach would an internal auditor typically utilize if she wishes to test for fraud and the expected deviation rate is very low?

A.
Stratified sampling
A.
Stratified sampling
Answers
B.
Attribute sampling
B.
Attribute sampling
Answers
C.
Discovery sampling
C.
Discovery sampling
Answers
D.
Haphazard sampling
D.
Haphazard sampling
Answers
Suggested answer: C

Explanation:

Discovery sampling is typically used when testing for fraud, especially when the expected deviation rate is very low. This method is designed to detect at least one occurrence of a specific characteristic (such as fraud) within a given sample size, making it effective for identifying rare but critical issues. It is particularly useful when the auditor suspects that fraud may exist but expects it to be infrequent.

Reference:

Institute of Internal Auditors (IIA), Practice Guide -- Auditing for Fraud.

Question 218

Report
Export
Collapse

Which of the following engagement supervision activities should be performed first?

A.
Ensure that internal audit recommendations are practical, cost-effective, and value-added
A.
Ensure that internal audit recommendations are practical, cost-effective, and value-added
Answers
B.
Ensure that internal audit conclusions am based on sufficient and reliable evidence
B.
Ensure that internal audit conclusions am based on sufficient and reliable evidence
Answers
C.
Ensure that risks to the timely completion of the engagement are assessed
C.
Ensure that risks to the timely completion of the engagement are assessed
Answers
D.
Ensure that performance assessments are completed for audit team members
D.
Ensure that performance assessments are completed for audit team members
Answers
Suggested answer: C

Explanation:

Ensuring that risks to the timely completion of the engagement are assessed should be performed first during engagement supervision activities. This initial step is crucial as it sets the foundation for the entire audit process. By identifying and assessing risks early, the audit supervisor can develop appropriate plans and strategies to mitigate these risks, ensuring that the engagement stays on track and is completed within the allocated time frame. Addressing this aspect first helps in prioritizing tasks, allocating resources effectively, and managing any potential obstacles that might delay the audit process.

The Institute of Internal Auditors (IIA) Standards

Internal Audit Engagement Planning and Risk Assessment Procedures

Question 219

Report
Export
Collapse

Which of the following would most likely prompt special notification from the chief audit executive to same management?

A.
Operational management has decried to weigh an audit issue against the organization's risk tolerance
A.
Operational management has decried to weigh an audit issue against the organization's risk tolerance
Answers
B.
A controls inaccurate operation has materially impacted the accuracy of the poor year's financial statements
B.
A controls inaccurate operation has materially impacted the accuracy of the poor year's financial statements
Answers
C.
Occurrences of asset misappropriation have been identified as a result of an ineffective operational control design
C.
Occurrences of asset misappropriation have been identified as a result of an ineffective operational control design
Answers
D.
The controls that management performed to confirm compliance with health and safety standards were not systematically documented
D.
The controls that management performed to confirm compliance with health and safety standards were not systematically documented
Answers
Suggested answer: B

Explanation:

A material impact on the accuracy of the prior year's financial statements due to the inaccurate operation of controls is a significant issue that would likely prompt special notification from the chief audit executive (CAE) to senior management. This is because such an issue can have substantial implications for the organization's financial reporting, stakeholder trust, and compliance with regulatory requirements. Immediate notification ensures that senior management can take timely corrective action to address and remediate the issue.

The Institute of Internal Auditors (IIA) Standards

Internal Audit Guidelines on Material Misstatements and Communication

Question 220

Report
Export
Collapse

According to the IIA guidance, which of the following foes the engagement work test in a review in a review of an organization al process?

A.
Process objectives
A.
Process objectives
Answers
B.
Process risks
B.
Process risks
Answers
C.
Process controls
C.
Process controls
Answers
D.
Process scope
D.
Process scope
Answers
Suggested answer: C

Explanation:

According to the IIA guidance, when reviewing an organizational process, the engagement work test typically focuses on process controls. This involves evaluating the design and effectiveness of controls in place to mitigate identified risks and ensure the achievement of process objectives. Assessing process controls helps auditors determine if the controls are operating as intended and are sufficient to manage the associated risks.

The Institute of Internal Auditors (IIA) Standards

Internal Audit Engagement Planning and Execution

Total 461 questions
Go to page: of 47
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms