ExamGecko
Search Search Login
Home Home / IIA / IIA-CIA-Part1
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A new chief audit executive wants to develop a formal internal control framework for her organization. She uses globally accepted frameworks as a guide. Which of the following would she likely find critical in creating the new framework for her organization?
An engagement supervisor notes that an internal auditor usually documents and submits draft audit reports for review without giving the process owners the opportunity to state their position on the issues raised. How should the engagement supervisor respond?
Which of the following offers the feast evidence that the internal audit activity has achieved organizational independence?
Which of the following situations is most likely to threaten the independence of the internal audit activity?
Which of the following statements is true regarding a key difference between assurance and consulting services provided by the internal audit activity?
Which of the following statements is true regarding risk management frameworks?
A global manufacturing company has three regional offices. The chief audit executive (CAE) is concerned about the cost of an upcoming external quality assessment of the internal audit activity. The last external assessment was performed six years ago. Recently, the internal audit staff at one of the regional offices performed an internal assessment. To ensure conformance with the Standards, what is the most appropriate action for the CAE to take?
Which of the following actions by an organization's board would potentially impair the internal audit activity's independence?
Which of the following actions does a competency assessment tool help the chief audit executive perform?
How can an Internal audit activity contribute to Its organization's risk assessment process?

Question 277 - IIA-CIA-Part1 discussion

Report
Export

An internal auditor performed a risk assessment and concluded that the controls over access privileges to a bank account were appropriate. Later, the auditor learned that a contractor was using a shared password provided by an authorized user of the account. Which of the following statements best describes the auditor's application of due professional care?

A.
Due professional care was exercised, despite the auditor's failure to identify the significant risk.
Answers
A.
Due professional care was exercised, despite the auditor's failure to identify the significant risk.
B.
Due professional care was not exercised because the auditor failed to identify all the significant risks during the risk assessment.
Answers
B.
Due professional care was not exercised because the auditor failed to identify all the significant risks during the risk assessment.
C.
Due professional care was not exercised because the residual risk from the possibility of authorized users sharing their passwords was not considered.
Answers
C.
Due professional care was not exercised because the residual risk from the possibility of authorized users sharing their passwords was not considered.
D.
Due professional care was not exercised because the auditor failed to conduct interviews to obtain testimonial evidence of possible password sharing
Answers
D.
Due professional care was not exercised because the auditor failed to conduct interviews to obtain testimonial evidence of possible password sharing
Suggested answer: C
Show Answer
asked 18/09/2024
AN KANGWOOK
46 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms