IIA IIA-CIA-Part3 Quiz 34 Topic 9 Questions 166-170

Question: 1

During which phase of disaster recovery planning should an organization identify the business units, assets, and systems that are critical to continuing an acceptable level of operations?

AScope and initiation phase.

BBusiness impact analysis.

CPlan development.

DTesting.

Show Answer

Question: 2

Which of the following would not impair the objectivity of internal auditor?

AManagement assurance on risks.

BImplementing risk responses on behalf of management.

CProviding assurance that risks assessed are correctly evaluated.

DSetting the risk appetite.

Show Answer

Question: 3

Within an enterprise, IT governance relates to the:

1) Alignment between the enterprise's IT long term plan and the organization's objectives.

2) Organizational structures of the company that are designed to ensure that IT supports the organization's strategies and objectives.

3) Operational plans established to support the IT strategies and objectives.

4) Role of the company's leadership in ensuring IT supports the organization's strategies and objectives.

A1 and 2 only

B3 and 4 only

C1, 2, and 4 only

D2, 3, and 4 only

Show Answer

Question: 4

The audit committee of a global corporation has mandated a change in the organization's business ethics policy. Which of the following approaches describes the best way to accomplish the policy's diffusion worldwide?

ADeploy the policy in the corporate headquarters' language, so everyone gets an unfiltered version simultaneously.

BIntroduce the policy region by region, using any lessons learned to change the subsequent version of the policy for the next area.

CConsult with legal and operational management in each affected country to ensure the final version can be implemented globally, following audit committee approval.

DSend the board-approved version of the policy to each country's senior leadership and empower them to tailor the policy to the local language and culture.

Show Answer

Question: 5

According to IIA guidance, which of the following steps are most important for an internal auditor to perform when evaluating an organization's social and environmental impact on the local community?

1) Determine whether previous incidents have been reported, managed, and resolved.

2) Determine whether a business contingency plan exists.

3) Determine the extent of transparency in reporting.

4) Determine whether a cost/benefit analysis was performed for all related projects.

A1 and 3.

B1 and 4.

C2 and 3.

D2 and 4.

Show Answer

IIA IIA-CIA-Part3 Quiz:34 Topic:9 Questions:166-170