Free CIMAPRO19-P03-1 Exam Braindumps (page: 28)

Page 27 of 69

Systems Development Lifecycle (SDLC) is used to manage risk within the development of new computer systems.
Which THREE of the following are appropriate controls to manage risk within the SDLC Process?

  1. When planning the new system, a clear business case must be approved specifying functionality, data transformation, expected costs and benefits.
  2. When designing the new system, controls must be put in place to ensure that all the functionalities of the old system are replicated.
  3. When developing the new system, the developers must follow defined programming standards and carry out component test to specified test harness outputs.
  4. When doing the analysis for the new system particular care should be taken over the data specification, transformation and manipulation, ensuring that expected outputs are defined and that such output meets the needs and expectations of the business users.
  5. When the implementation of the new system is taking place, parallel running must be undertaken to ensure the output for the new system exactly matches that from the old system.
  6. The Post Completion Review should take place immediately after the implementation while all the facts are still fresh in everyone's minds.

Answer(s): A,C,D



Amber selects appropriate suppliers and places purchase orders. Brian passes invoices for payment and submits payment instructions to the bank. Chris checks incoming inventory and unpacks goods from their containers. Dirwan posts purchase invoices and files invoices and supporting documents.
Which member of staff could most easily commit fraud?

  1. Amber
  2. Brian
  3. Chris
  4. Dirwan

Answer(s): B



H manufactures and sells healthy dietary supplements. The company recruits individuals as part- time agents to sell its products to friends and colleagues. These agents are required to buy H's products and to resell them at a small mark-up.
For a fee, H will provide agents with training in persuasive selling techniques. Agents who pass exams at the conclusion of this training can become distributors. Distributors buy bulk quantities of H's products at a discount and can recruit their own sales agents. Those agents can also take training and can recruit agents of their own.
At what stage does H stop being a legitimate business and become a pyramid selling fraud?

  1. When it asks its agents to buy product and marketing material up front.
  2. When it offers returns on its agents' investments that seem remarkable.
  3. When it offers its agents more reward for recruiting other agents than for selling its product.
  4. When its training programmes promise to unlock the secret of selling its product.

Answer(s): C



B is a family run security company with a number of prestigious clients who rely on it to maintain online access to their CCTV and alarm systems and respond to any detected intrusions or malfunctions.
It designs and installs security systems for a number of UHNW (Ultra High Net Worth) individuals who may have several seasonal and city residences largely unoccupied for many months of the year. B's reputation as 100% secure is crucial to its on-going success in this very specialised marketplace. Select THREE factors which should be given prominence in B's fraud risk management strategy.

  1. B should carry out background security, health and financial checks on all employees, their immediate family members and associates on an annual basis.
  2. B should ask new employees to fill in a declaration that they are honest and have no criminal convictions for dishonesty. That can be filed as evidence that the company took this precaution.
  3. B should inform clients that they have a stringent anti-fraud policy.
  4. B should have an active whistle-blower policy whereby all staff are encouraged by positive reward to report any suspicions they may have about other employees.
  5. B should ensure that employees who design or install security systems are not involved with the operation of those systems once implemented.
  6. B Should revise and publish their fraud policy document to employees every three months, highlighting any new elements and industry developments.

Answer(s): A,D,F






Post your Comments and Discuss CIMA CIMAPRO19-P03-1 exam with other Community members:

CIMAPRO19-P03-1 Discussions & Posts