Question: 1
Which of the following is the PRIMARY reason for an IS auditor to map out the narrative of a business
process?
Question: 2
While following up on a prior audit report, an IS auditor determines that a number of recommendations to
address critical findings have not been implemented as agreed. What is the BEST course of action for the
auditor?
Question: 3
An IS auditor is performing a routine procedure to test for the possible existence of fraudulent transactions.
Given there is no reason to suspect the existence of fraudulent transactions, which of the following data
analytics techniques should be employed?
Question: 4
Which of the following ensures components of an IT system are identified and baselined, and that changes to them are implemented in a controlled manner?
Question: 5
A small organization does not have enough employees to implement adequate segregation of duties in accounts payable. Which of the following is the BEST compensating control to mitigate the risk associated with this situation?