CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. IIA
  5. CIA

Free CIA Exam Braindumps

Which of the following statements, if true, could justify an auditor's decision not to report governance-related control deficiencies to the audit committee?

  1. Management plans to initiate corrective action
  2. The board of directors has a separate corporate governance committee
  3. The amounts and the potential risks associated with the deficiencies are not material to the overall organization.
  4. Governance issues are complex and the auditor should rely on management's analysis of the extent of the problem

Answer(s): C



The primary purpose for the chief audit executive's communication of the internal audit activity's plans and resource requirements to senior management and the board is to

  1. Identify internal audit engagement scope limitations
  2. Indicate future internal audit staffing needs
  3. Highlight the internal audit activity's view of significant risk areas
  4. Ensure that the work of the internal audit activity supports the organization's objectives

Answer(s): D



In a well-developed management environment, the internal audit activity would

  1. Report the results of audit engagements to line management as well as to senior management
  2. Conduct regularly scheduled audits of existing systems and initial audits of new computer systems after they have begun operating.
  3. Interface primarily with senior management, minimizing interactions with line managers who are the subjects of internal audit work.
  4. Focus on the maintenance of accounting controls (such as segregation of the duties of authorization, recording, and custody) and report results to the audit committee

Answer(s): A



According to the International Professional Practices Framework, which of the following describes a key objective of the risk management process that would also be a key responsibility of the internal audit activity?

  1. Determine the level of risk acceptable to the organization, including the acceptance of risks designed to accomplish the organization's strategic plans.
  2. Design and implement risk mitigation activities to reduce risk to levels that have been determined to be acceptable.
  3. Receive periodic reports of the results of the risk management processes.
  4. Conduct ongoing monitoring activities to periodically reassess risk and the effectiveness of the controls to manage risk.

Answer(s): D






Post your Comments and Discuss IIA CIA exam with other Community members:

CIA Exam Discussions & Posts