IIA IIA-CIA-Part2 Quiz 77 Topic 2 Questions 381-385

Question: 1

An organization does not have a formal risk management function. According to the Standards, which of the following are conditions where the internal audit activity (IAA) may provide risk management consulting?

1. There is a clear strategy and timeline to migrate risk management responsibility back to management.

2. The IAA has the final approval on any risk management decisions.

3. The IAA does not give objective assurance on any part of the risk management framework for which it is responsible.

4. The nature of services provided to the organization is documented in the internal audit charter.

A1, 2, and 3 only

B1, 2, and 4 only

C1, 3, and 4 only

D2, 3, and 4 only

Show Answer

Question: 2

An organization has acquired a new line of business. None of the organization's internal auditors have the required expertise to perform an internal audit of the new business line; therefore, the chief audit executive (CAE) has contracted the services of an external audit firm to perform the engagement. The CAE has assigned a member of the internal audit team to assist the external team with the engagement. According to the Standards, which of the following statements is true regarding supervision of the engagement?

AThe CAE may rely upon the external firm's auditor in charge to supervise the engagement.

BThe external firm's auditor in charge must defer to the judgment of the CAE for any disputes.

CThe CAE is not responsible for the quality of an audit performed by an external firm.

DThe CAE should not assign an inexperienced staff member to assist with the engagement.

Show Answer

Question: 3

The chief audit executive (CAE) of a new organization is in the process of determining the manner in which audit reports will be distributed and to whom. According to the Standards, which of the following is the most appropriate course of action for the CAE to take to develop this distribution process?

AThe process should be determined in meetings with the external auditor and senior management to ensure alignment with external reporting.

BThe CAE should meet with senior management for their input, but finalize the distribution of all reports with the board.

CThe CAE should independently implement the report distribution, using best judgment to ensure that all relevant stakeholders are informed.

DThe CAE should request that senior management and the board meet to determine the most appropriate reporting method.

Show Answer

Question: 4

During the audit of a large decentralized supply chain function, the chief audit executive (CAE) receives serious allegations of fraud concerning the vice president responsible for this function. The CAE engages a third party to provide forensic audit services and lead the investigation portion of the engagement. As part of this team, which of the following would be an appropriate role for the investigator?

1. Authenticate the original approval signatures on contracts.

2. Interview personnel to understand the supply chain processes.

3. Provide certified copies of relevant original documents for the audit file.

4. Identify variances in pixels on original electronic documents.

A1 and 2 only

B1 and 4 only

C2 and 3 only

D3 and 4 only

Show Answer

Question: 5

The chief audit executive (CAE) manages a large internal audit activity (IAA) reporting functionally to the audit committee and administratively to the chief risk officer. During the CAE's recent unplanned medical leave, several internal audit reports were completed and waiting for CAE approval, however, no formal delegation of authority was in place to anticipate this situation. In order to preserve the independence of the IAA, which of the following would be the most appropriate individual to review and approve these reports during the CAE's absence?

AExternal auditor.

BChief risk officer.

CEngagement lead auditor.

DAudit committee chair.

Show Answer

IIA IIA-CIA-Part2 Quiz:77 Topic:2 Questions:381-385