IIA-CIA-Part1試験無料問題集「IIA Essentials of Internal Auditing 認定」

A. The chief audit executive schedules a self-assessment and the board approves the results.

B. The internal audit activity conducts a self-assessment that is validated by a qualified and experienced internal auditor and then schedules a qualified, independent external assessor.

C. The board nominates an independent individual from senior management in the organization to conduct an assessment of the internal audit activity.

D. An external auditor conducts an audit of the organization, which includes information about the internal audit activity.

A. Internal auditors must incorporate knowledge gained from the consulting engagement into me evaluation or risks and controls in future assurance engagements.

B. The internal audit activity must not provide future assurance services related to fraud prevention programs until at least one year has lapsed.

C. The internal audit activity must be free from interference in determining the scope of the consulting engagement.

D. Internal auditors assigned to the consulting engagement must have no previous responsibility for fraud prevention programs.

A. Request and receive client feedback surveys during the engagement.

B. Conduct an audit to the same extent that another prudent auditor would under similar circumstances.

C. Seek feedback from the engagement supervisor during the engagement.

D. Execute internal audit work in such a manner as to provide absolute assurance of compliance.

A. Risk avoidance.

B. Risk reduction.

C. Risk acceptance.

D. Risk sharing.

A. Internal auditors must maintain objectivity while performing their work.

B. The nature of services provided are defined in the internal audit charter.

C. The objectives and scope of the engagement typically are directed by management.

D. Internal auditors may assume management responsibilities.

A. The CAE obtains senior management's approval to hire staff.

B. The CAE provides the board with an annual budget for approval.

C. The CAE reports significant issues to the organization's CEO.

D. The CAE seeks senior management approval of the internal audit charter.

A. Swipe card access is required to gain access to the server room.

B. Foam fire extinguishers are operable to protect against electrical fires.

C. Servers are secured individually to their racks by locks.

D. Adequate signs are in place to assist in locating safety equipment.

A. The invoices have low reliability.

B. The invoices have zero reliability.

C. The invoices have medium reliability.

D. The invoices have high reliability.

A. Audit clients' feedback and recommendations for quality improvement.

B. Disclosure of nonconformance that impacts the overall operation of the internal audit activity.

C. Results from the assessment and the current status of resulting action plans.

D. A statement of compliance with the Code of Ethics, Standards, and Definition of Internal Auditing.

A. The chief audit executive (CAE) reports on the internal audit activity's day-to-day tasks and responsibilities to the CEO.

B. The CAE regularly meets with the organization's chief risk officer, who validates all reported audit findings and dictates which will be included in the package to the audit committee.

C. The internal audit activity will experience staffing shortages for the next six months due to planned and unplanned leaves of absence; therefore, the CAE proposed including fewer audits in the annual audit plan compared to the previous financial year.

D. An assessment of the risk management function is reviewed by an outside consulting firm because the CAE is temporarily fulfilling the role of risk manager.

A. Expertise in cybersecurity, an area of increasing risk.

B. Technical industry-specific expertise.

C. Knowledge of IT risks and controls.

D. Knowledge of forensic accounting.

A. Information gathering.

B. Risk assessment.

C. Data analytics.

D. Organizational behavior awareness.

A. External risks and internal opportunities are omitted from the risk assessment scope.

B. Risk tolerance may or may not align with risk appetite, depending on whether the assessment is quantitative or qualitative.

C. Risk is assessed on both an inherent and a residual basis.

D. The framework addresses four organizational objective categories: strategic, historical, operational, and investment.

A. The internal auditors violated the standard for due professional care because they did not detect the fraud, even though it occurred during the period that was reviewed.

B. The internal auditors are not responsible for considering fraud risk, which is a management responsibility.

C. The internal auditors could not have detected the fraud due to collusion among employees in the inventory unit.

D. The internal auditors should have had sufficient knowledge of fraud to identify red flags indicating possible fraud.

A. 1, 3, and 4 only.

B. 1 and 2 only.

C. 3 and 4 only.

D. 1, 2, and 3 only.

A. Because the contract was signed before the money was offered, accepting the money would not violate the IIA Code of Ethics.

B. Accepting the money would be prohibited only if it were non-customary.

C. Accepting the money would violate the IIA Code of Ethics.

D. Because the CIA is not acting as an internal auditor, accepting the money would be governed only by the organization's code of conduct.

A. Interviewing shift supervisors about their employees' attendance.

B. Preparing an engagement program.

C. Obtaining a copy of the contract between the organizations and the temporary employment agency.

D. Interviewing the manager who requested the audit engagement.