ExamGecko
Search Search Login
Home Home / IIA / IIA-CIA-Part2

IIA IIA-CIA-Part2 Practice Test - Questions Answers, Page 28

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

How should an internal auditor approach preparing a detailed risk assessment during engagement planning?
A newly promoted chief audit executive (CAE) is faced with a backlog of assurance engagement reports to review for approval. In an attempt to attach a priority for this review, the CAE scans the opinion statement on each report. According to IIA guidance, which of the following opinions would receive the lowest review priority? 1. Graded positive opinion. 2. Negative assurance opinion. 3. Limited assurance opinion. 4. Third-party opinion.
After the team member who specialized in fraud investigations left the internal audit team, the chief audit executive decided to outsource fraud investigations to a third party service provider on an as needed basis. Which of the following is most likely to be a disadvantage of this outsourcing decision?
What is the primary reason that audit supervision includes approval of the engagement report?
Internal audit staff lacks the expertise to perform a fraud investigation engagement stemming from a whistleblowing incident. Which of the following is the most appropriate option for the chief audit executive?
According to the MA guidance, which of the following does the engagement work program test in a review of an organizational process?
An internal auditor wanted to determine whether company vehicles were being used for personal purposes She extracted a report that listed company vehicle numbers business units to which the vehicles are allocated travel dates, travel duration and mileage She then filtered the data for weekend dates Which of the following additional information would the auditor need?
According to an internal audit observation, the organization's rules of record management require all contracts to be registered and stored in a specific electronic system. One subsidiary has thousands of client contracts on paper, which are kept in the office because there are not enough assistants to scan the contracts into the system. Which of the following component should be added to this observation?
A code of business conduct should include which of the following to increase its deterrent effect? 1. Appropriate descriptions of penalties for misconduct. 2. A notification that code of conduct violations may lead to criminal prosecution. 3. A description of violations that injure the interests of the employer. 4. A list of employees covered by the code of conduct.
The external auditor has identified a number of production process control deficiencies involving several departments. As a result, senior management has asked the internal audit activity to complete internal control training for all related staff. According to IIA guidance, which of the following would be the most appropriate course of action for the chief audit executive to follow?

Question 271

Report
Export
Collapse

An internal auditor is analyzing sates records and is concerned whether a transaction is recorded in the coned period. The accounting manager explains that the external auditor approved the records and produces an email from the external audit team leader. How should tie internal auditor respond?

A.
Ask the external auditor to review the same transaction again as an independent third party
A.
Ask the external auditor to review the same transaction again as an independent third party
Answers
B.
Consult account accounting principles, standards, and relevant guidelines in regard to timing of the entry
B.
Consult account accounting principles, standards, and relevant guidelines in regard to timing of the entry
Answers
C.
Interview the chief financial officer and obtain her opinion on how the transactions should be recorded
C.
Interview the chief financial officer and obtain her opinion on how the transactions should be recorded
Answers
D.
Compare the recording of this transaction to now similar ones were executed last year
D.
Compare the recording of this transaction to now similar ones were executed last year
Answers
Suggested answer: B

Explanation:

When concerned about whether a transaction is recorded in the correct period, the internal auditor should consult accounting principles, standards, and relevant guidelines to determine the appropriate timing of the entry. External auditor approval does not negate the internal auditor's responsibility to ensure that the transaction complies with established accounting standards and principles. Consulting the relevant guidelines provides an objective basis for assessing the accuracy of the transaction's recording.

The Institute of Internal Auditors (IIA) Standard 1220 -- Due Professional Care: 'Internal auditors must apply the care and skill expected of a reasonably prudent and competent internal auditor.'

Generally Accepted Accounting Principles (GAAP) or International Financial Reporting Standards (IFRS) depending on the applicable framework.

Question 272

Report
Export
Collapse

During a review of the treasury function an internal auditor identified a risk that all bank accounts may net to include in the daily reconciliation process.

Which of the following responses would be most effective to mitigate this risk?

A.
The treasury supervisor establishes a threshold for amounts on bank statements to be reconciled against data in the system
A.
The treasury supervisor establishes a threshold for amounts on bank statements to be reconciled against data in the system
Answers
B.
The treasury analyst performs a daily reconciliation of al bank statements obtained via email against data in the system
B.
The treasury analyst performs a daily reconciliation of al bank statements obtained via email against data in the system
Answers
C.
The treasury analyst reviews a daily report automatically generated by the treasury system, which shows bank statements that have not been uploaded into the accounting system.
C.
The treasury analyst reviews a daily report automatically generated by the treasury system, which shows bank statements that have not been uploaded into the accounting system.
Answers
D.
The treasury supervisor seeks an annual confirmation from the bank regarding the bank statements processed within a year
D.
The treasury supervisor seeks an annual confirmation from the bank regarding the bank statements processed within a year
Answers
Suggested answer: C

Explanation:

To mitigate the risk that all bank accounts may not be included in the daily reconciliation process, the most effective response is to ensure that the treasury analyst reviews a daily report generated by the treasury system. This report highlights any bank statements that have not been uploaded into the accounting system, ensuring that all accounts are accounted for in the reconciliation process. This automated approach reduces the risk of human error and ensures completeness and accuracy in the reconciliation process.

The Institute of Internal Auditors (IIA) Practice Guide: Auditing the Treasury Function

IIA Standard 2130 - Control

Question 273

Report
Export
Collapse

During an audit of the human resources department, an internal auditor adopts benchmarking to test the employee turnover rate. How should the internal auditor apply this technique?

A.
Compare turnover m the organization to published turnover rates of peer organizations.
A.
Compare turnover m the organization to published turnover rates of peer organizations.
Answers
B.
Compare turnover in one period with turnover in the previous period in the organization
B.
Compare turnover in one period with turnover in the previous period in the organization
Answers
C.
Compare turnover in the period to total employees in the organization
C.
Compare turnover in the period to total employees in the organization
Answers
D.
Compare turnover with the auditor's general knowledge of the organization
D.
Compare turnover with the auditor's general knowledge of the organization
Answers
Suggested answer: A

Explanation:

When using benchmarking to test the employee turnover rate, the internal auditor should compare the organization's turnover rate to the published turnover rates of peer organizations. This method provides a relevant standard or point of reference to evaluate the organization's performance relative to similar entities. By using external benchmarks, the auditor can identify whether the turnover rate is above or below industry norms, which helps in assessing the effectiveness of the organization's HR practices.

The Institute of Internal Auditors (IIA) Practice Guide: Internal Audit and Organizational Performance

IIA Standard 1220 - Due Professional Care

Question 274

Report
Export
Collapse

When auditing an organization's cash-handling activates which of the following is the most reliable form of testimonial evidence an internal auditor can obtain?

A.
Testimony from the cashier who performs the processes being reviewed
A.
Testimony from the cashier who performs the processes being reviewed
Answers
B.
Testimony from me cashier's supervisor who knows how processes should be performed
B.
Testimony from me cashier's supervisor who knows how processes should be performed
Answers
C.
Testimony from a knowledgeable person who is independent of the cashiering duty
C.
Testimony from a knowledgeable person who is independent of the cashiering duty
Answers
D.
Testimony from a manager who oversees all cashiering activities being reviewed
D.
Testimony from a manager who oversees all cashiering activities being reviewed
Answers
Suggested answer: C

Explanation:

When auditing an organization's cash-handling activities, the most reliable form of testimonial evidence comes from a knowledgeable person who is independent of the cashiering duty. This independence ensures that the testimonial evidence is unbiased and not influenced by those directly involved in the processes being reviewed. Such evidence is considered more reliable as it is less likely to be affected by personal interests or biases.

The Institute of Internal Auditors (IIA) Practice Guide: Evaluating Evidence

IIA Standard 2310 - Identifying Information

Question 275

Report
Export
Collapse

Which of the following is an inherent risk of issuing an opinion on the overall effectiveness of internal control?

A.
The results of individual engagements do not support a satisfactory opinion on the effectiveness of internal control.
A.
The results of individual engagements do not support a satisfactory opinion on the effectiveness of internal control.
Answers
B.
The results of the individual engagements do not support a positive assurance opinion on the effectiveness of internal control
B.
The results of the individual engagements do not support a positive assurance opinion on the effectiveness of internal control
Answers
C.
The audit risk and associated legal implications increase
C.
The audit risk and associated legal implications increase
Answers
D.
The reliance on other assurance providers increases
D.
The reliance on other assurance providers increases
Answers
Suggested answer: C

Explanation:

Issuing an opinion on the overall effectiveness of internal control inherently carries the risk of increased audit risk and associated legal implications. This is because the opinion represents a high level of assurance, and any errors or omissions in the underlying audit work can lead to significant consequences, including potential legal liability. Therefore, auditors must be thorough and ensure that their conclusions are well-supported by the evidence obtained during the audit process.

The Institute of Internal Auditors (IIA) Practice Guide: Forming an Opinion on the Overall Adequacy and Effectiveness of Internal Controls

IIA Standard 2400 - Communicating Results

Question 276

Report
Export
Collapse

According to IIA guidance, which of the following reflects a characteristic of sufficient and reliable information?

A.
The establishment of an audit approach and documentation system
A.
The establishment of an audit approach and documentation system
Answers
B.
The standardization of workpaper terminology and notations
B.
The standardization of workpaper terminology and notations
Answers
C.
The ability to reach consistent audit conclusions regardless of who performs the audit
C.
The ability to reach consistent audit conclusions regardless of who performs the audit
Answers
D.
The application of documentation standards m an appropriate and consistent manner
D.
The application of documentation standards m an appropriate and consistent manner
Answers
Suggested answer: C

Explanation:

According to IIA guidance, sufficient and reliable information is characterized by the ability to reach consistent audit conclusions regardless of who performs the audit. This means that the information collected during the audit is adequate, factual, and well-documented so that different auditors would be able to draw the same conclusions based on the evidence. Consistency in audit conclusions enhances the reliability and credibility of the audit process.

The Institute of Internal Auditors (IIA) Practice Guide: Quality Assurance and Improvement Program

IIA Standard 2310 - Identifying Information

IIA Standard 2330 - Documenting Information

Question 277

Report
Export
Collapse

Where should internal auditor focus their attention when identify and assessing key risks during the planning stage of an assurance engagement?

A.
Sampling risk.
A.
Sampling risk.
Answers
B.
Audit risk.
B.
Audit risk.
Answers
C.
Residual risk.
C.
Residual risk.
Answers
D.
Inherent risk
D.
Inherent risk
Answers
Suggested answer: D

Explanation:

During the planning stage of an assurance engagement, internal auditors should focus their attention on identifying and assessing inherent risks. Inherent risk is the risk of a material misstatement or noncompliance due to error or fraud that could occur before any controls are applied. Understanding inherent risk is crucial as it helps auditors identify areas that may need more extensive testing and ensures that audit resources are appropriately allocated to the highest risk areas.

The Institute of Internal Auditors (IIA) Practice Guide: Assessing the Adequacy of Risk Management Using ISO 31000

IIA Standard 2010 - Planning

Question 278

Report
Export
Collapse

An internal audit intends to create a risk and control matrix to better understand the organization's complex manufacturing process. With which of the following approaches would the auditor most likely start?

A.
Assess management responses to key risk exposures
A.
Assess management responses to key risk exposures
Answers
B.
Analyze the costs and benefits of key controls
B.
Analyze the costs and benefits of key controls
Answers
C.
Evaluate the design adequacy of known controls
C.
Evaluate the design adequacy of known controls
Answers
D.
Conduct a walk-through of all related activates
D.
Conduct a walk-through of all related activates
Answers
Suggested answer: D

Explanation:

When creating a risk and control matrix to understand a complex manufacturing process, the internal auditor should start by conducting a walk-through of all related activities. This approach allows the auditor to observe the processes in action, understand the flow of transactions, and identify key controls and risks. A walk-through provides a comprehensive understanding of the operational context, which is essential for developing an accurate and effective risk and control matrix.

The Institute of Internal Auditors (IIA) Practice Guide: Auditing the Control Environment

IIA Standard 2210 - Engagement Objectives

Question 279

Report
Export
Collapse

A chief audit executive (CAE) a developing a work program for an upcoming engagement that will review an organization's small contracting services. When of the following would the CAT need to consider most when developing the work program?

A.
The contracting department's staffing changes within the last year
A.
The contracting department's staffing changes within the last year
Answers
B.
The certifications held by the internal auditors assigned to the engagement
B.
The certifications held by the internal auditors assigned to the engagement
Answers
C.
The internal audit activity's increase n budget and staffing for the year
C.
The internal audit activity's increase n budget and staffing for the year
Answers
D.
The organization's recent changes to how it processes payments
D.
The organization's recent changes to how it processes payments
Answers
Suggested answer: D

Explanation:

When developing the work program for an engagement reviewing an organization's small contracting services, the chief audit executive (CAE) should consider the organization's recent changes to how it processes payments. Changes in payment processing can significantly impact the control environment and may introduce new risks or control gaps. Understanding these changes will help the CAE design appropriate audit procedures to evaluate the effectiveness of the controls over the new processes.

The Institute of Internal Auditors (IIA) Practice Guide: Developing the Internal Audit Strategic Plan

IIA Standard 2200 - Engagement Planning

Question 280

Report
Export
Collapse

An internal auditor e assessing the design of a control and has identified a potential significant weakness. The auditor shared his concern with management however management does not agree that the weakness is significant. What should the internet auditor do next?

A.
Perform additional audit work to better articulate the risk
A.
Perform additional audit work to better articulate the risk
Answers
B.
Report the finding that management has accepted a level of risk that is unacceptable.
B.
Report the finding that management has accepted a level of risk that is unacceptable.
Answers
C.
Proceed to testing how effectively the control is opening.
C.
Proceed to testing how effectively the control is opening.
Answers
D.
Because the design weakness has been identified no additional audit work is needed
D.
Because the design weakness has been identified no additional audit work is needed
Answers
Suggested answer: A

Explanation:

When an internal auditor identifies a potential significant weakness in a control and management does not agree with the assessment, the appropriate next step is to perform additional audit work to better articulate the risk. This means gathering more evidence, conducting further analysis, and providing clearer examples of how the weakness could impact the organization. By doing this, the auditor can better communicate the potential consequences and severity of the risk to management, increasing the likelihood of reaching a mutual understanding and agreement on the necessary actions.

The Institute of Internal Auditors (IIA) Practice Guide: Communicating Risk and Control Information

IIA Standard 2310 - Identifying Information

IIA Standard 2410 - Criteria for Communicating

Total 461 questions
Go to page: of 47
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms