IIA IIA-CIA-Part2 Quiz 225 Topic 5 Questions 1121-1125

Question: 1

An internal auditor is concerned that a division's management may have shipped poor quality merchandise in order to inflate sales and thereby boost the division manager's bonus. Furthermore, the auditor suspects that returned goods are being shipped to other customers as new products before defects are fully corrected. Which of the following audit procedures would be least effective in determining whether such shipments took place?

AExamine credit memos issued after year end for goods shipped before year end.

BPhysically observe the shipping and receiving area for evidence of returned goods.

CInterview customer service representatives regarding unusual numbers of customer complaints.

DRequire the division to take a complete physical inventory at year end, and observe the taking of the inventory.

Show Answer

Question: 2

An audit of an organization's systems development life cycle (SDLC) found that detailed internal control procedures for mission critical business systems were not developed until the systems were implemented. When reporting this finding, the auditor should recommend the development of such procedures during which SDLC phase?

AInvestigation.

BDesign.

CDevelopment.

DImplementation.

Show Answer

Question: 3

In evaluating threats to an organization's network communication system, which of the following transmission media would an auditor recommend as most reliable and effective in thwarting intruders?

AOptical fiber cable.

BSatellite microwave.

CRadio frequency.

DInfrared.

Show Answer

Question: 4

Which of the following would be the most appropriate starting point in a compliance evaluation of software licensing requirements for an organization with more than 15,000 computer workstations?

ADetermine if software installation is controlled centrally or distributed throughout the organization.

BDetermine what software packages have been installed on the organization's computers and the number of each package installed.

CDetermine how many copies of each software package have been purchased by the organization.

DDetermine what mechanisms have been installed for monitoring software usage.

Show Answer

Question: 5

The internal audit activity's key responsibility for information security is to

AIdentify technical aspects, risks, processes, and transactions to be examined.

BDetermine the scope and degree of testing to achieve engagement objectives.

CPeriodically assess information security practices.

DDocument engagement procedures.

Show Answer

IIA IIA-CIA-Part2 Quiz:225 Topic:5 Questions:1121-1125