IIA IIA-CIA-Part2 Quiz 60 Topic 5 Questions 296-300

Question: 1

While performing an audit of the human resources department, an internal auditor discovered unencrypted files containing the personal information of employees stored on a public shared drive. According to IIA guidance, which of the following actions by the auditor would be the most appropriate?

ARemove the files containing the social security numbers and personal information.

BCommunicate the issue to the chief audit executive as well as IT and legal departments.

CChange permissions to the shared drive to only allow access to human resources personnel.

DImmediately review the audit logs to see if anyone has accessed this information and follow-up.

Show Answer

Question: 2

A chief audit executive (CAE) has decided to add an engagement to the current audit plan which will exceed available audit resources. Which of the following is the best course of action for the CAE to take?

APresent the plan change to senior management and request additional resources before going to the board of directors.

BSeek approval from senior management and the board of directors for the plan change and advise them of the issue of limited resources.

CAdd this change to the plan and request senior management to indicate which other engagement should be deleted to keep the overall plan within resource constraints.

DImmediately seek additional resources from senior management and the board of directors to meet the needs of the organization.

Show Answer

Question: 3

The internal audit activity performs the following sequence of risk management activities: identification, analysis, and evaluation. According to IIA guidance, which of the following assurance approaches does this describe?

AProcess elements approach.

BEnterprise-wide risk management approach.

CKey principles approach.

DMaturity model approach.

Show Answer

Question: 4

According to IIA guidance, which of the following should be considered when creating policies and procedures for the internal audit activity (IAA)?

ANumber of auditors, complexity of audit activities, and structure of the IAA.

BNumber of auditors, complexity of audit activities, and audit staff skills and competencies.

CNumber of auditors, structure of the IAA, and audit staff skills and competencies.

DComplexity of audit activities, structure of the IAA, and audit staff skills and competencies.

Show Answer

Question: 5

The internal audit activity of an organization obtained approval to add a senior auditor to its staff. The chief audit executive, audit manager, and audit supervisor each will interview the candidates. According to the Standards, which of the following best explains the involvement of management in the interview process?

AProvides audit management with the opportunity to communicate expectations regarding ethical behavior standards.

BEnables audit management to outline its quality assurance and improvement program with the senior auditor.

CAssists audit management in planning by more effectively allocating the senior auditor to appropriate audits.

DAllows audit management to explain the criteria that will be used to evaluate the senior auditor's performance.

Show Answer

IIA IIA-CIA-Part2 Quiz:60 Topic:5 Questions:296-300