CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. IIA
  5. IIA-ACCA

Free IIA-ACCA Exam Braindumps (page: 68)

Page 68 of 152
PDF with 604 Questions

According to IIA guidance, which of the following procedures would be least effective in managing the risk of payroll fraud?

  1. The employee's name listed on organization's payroll is compared to the personnel records.
  2. Payroll time sheets are reviewed and approved by the timekeeper before processing.
  3. Employee access to the payroll database is deactivated immediately upon termination.
  4. Changes to payroll are validated by the personnel department before being processed.

Answer(s): B



During an assurance engagement, an internal auditor discovered that a sales manager approved numerous sales contracts for values exceeding his authorization limit. The auditor reported the finding to the audit supervisor, noting that the sales manager had additional new contracts under negotiation. According to IIA guidance, which of the following would be the most appropriate next step?

  1. The audit supervisor should include the new contracts in the finding for the final audit report.
  2. The audit supervisor should communicate the finding to the supervisor of the sales manager through an interim report.
  3. The audit supervisor should remind the sales manager of his authority limit for the contracts under negotiation.
  4. The auditor should not reference the new contracts, because they are not yet signed and therefore cannot be included in the final report.

Answer(s): B



An internal auditor wants to determine whether employees are complying with the information security policy, which prohibits leaving sensitive information on employee desks overnight. The auditor checked a sample of 90 desks and found eight that contained sensitive information. How should this observation be reported, if the organization tolerates 4 percent noncompliance?

  1. The matter does not need to be reported, because the noncompliant findings fall within the acceptable tolerance limit.
  2. The deviations are within the acceptable tolerance limit, so the matter only needs to be reported to the information security manager.
  3. The incidents of noncompliance fall outside the acceptable tolerance limit and require immediate corrective action, as opposed to reporting.
  4. The incidents of noncompliance exceed the tolerance level and should be included in the final engagement report.

Answer(s): D



Which of the following is the primary reason the chief audit executive should consider the organization's strategic plans when developing the annual audit plan?

  1. Strategic plans reflect the organization's business objectives and overall attitude toward risk.
  2. Strategic plans are helpful to identify major areas of activity, which may direct the allocation of internal audit activity resources.
  3. Strategic plans are likely to show areas of weak financial controls.
  4. The strategic plan is a relatively stable document on which to base audit planning.

Answer(s): A



Page 68 of 152



Post your Comments and Discuss IIA IIA-ACCA exam with other Community members:

Jeelzs commented on June 25, 2024
Awesome indeed
Anonymous
upvote