Free IIA IIA-CIA-Part1 Übungsprüfungen - Seite 14 von 33

Question #131

The internal audit activity was denied access to expenditure and budget reports because they were considered to be confidential.

This situation would result in which of the following limitations of the internal audit activity?

A . Independence
B . Integrity
C . objectivity
D . Authority

Lösung einblenden Lösung ausblenden

Question #132

Which risk management activity would cause the internal auditor to assume a management responsibility?

A . Assessing management’s acceptance of risk.
B . Reviewing a cybersecurity risk report issued by management.
C . Developing a list of emerging risks for management.
D . Prioritizing risks for management.

Lösung einblenden Lösung ausblenden

Question #133

Which should the internal auditor first consider when assessing fraud risks during an engagement?

A . Compare the organizations fraud strategies with the industry’s strategies.
B . Review any related prior fraud investigations.
C . Investigate any related fraud allegations.
D . Communicate any suspicious fraud activities to management.

Lösung einblenden Lösung ausblenden

Question #134

According to NA guidance, which of the following conditions would enhance the independence of the internal audit activity?

A . The organizational culture rewards critical and objective thinking.
B . The quality of work performed by the internal audit activity is periodically reviewed,
C . The organization establishes effective governing body oversight,
D . Audit assignments are rotated among internal audit staff

Lösung einblenden Lösung ausblenden

Question #135

Which of the following would be considered an indicator that an organization’s ethics program is not yet well developed?

A . Disciplinary actions for ethics compliance violations are reviewed by the internal audit activity for consistency.
B . Communication of ethics compliance expectations is the responsibility of employees‘ direct managers.
C . The organization’s code of ethics and related compliance policy are reviewed annually for potential updates.
D . The board of directors reviews ethics oversight metrics for violations and compliance.

Lösung einblenden Lösung ausblenden

Question #136

What should be the first step for a newly hired chief audit executive to build and maintain the proficiency of the internal audit activity?

A . Incorporate the basic criteria of internal audit competency into job descriptions
B . Complete a periodic skills assessment of the internal audit activity
C . Develop a competency or skill assessment tool.
D . Perform benchmarking with competitors to learn what other firms are doing related to this topic

Lösung einblenden Lösung ausblenden

Question #137

A regional entertainment organization is in the process of developing a corporate social responsibility (CSR) policy. Management invites ideas from employees when developing the CSR policy.

Which of the following is the most appropriate idea to include?

A . Management has overall responsibility for the effectiveness of governance, risk management, and internal control processes associated with CSR.
B . The board is responsible for ensuring that CSR objectives are established, risks are managed, performance is measured, and activities are appropriately monitored and reported.
C . Management is responsible for ensuring that the organization’s CSR principles are communicated, understood, and integrated into decision-making processes.
D . Generally, CSR activities are limited to the management of the organization; thus, employees do not have a responsibility for ensuring the success of CSR objectives.

Lösung einblenden Lösung ausblenden

Question #138

In an assurance engagement focused on the adequacy of organization wide risk management practices, which of the following best describes a primary area of interest for the engagement?

A . The effectiveness of process-level and transaction-level controls.
B . Conflicts of interest within the organizational structure of the senior management.
C . The alignment of management decisions with the level of risk the organization is willing to accept.
D . The actions of upper management in response to the internal audit activity’s reporting

Lösung einblenden Lösung ausblenden

Question #139

Which of the following would best describe a control implemented to detect cash register disbursement fraud in a large retail store?

A . Separate the duties of processing and authorizing refunds on merchandise
B . Post signs in the register area prompting customers to ask for and examine their sales receipts
C . Periodically count the cash in the register and compare it to the expected amount
D . Use cash registers with internal tapes that are tamper proof and that require a manager to process voids or refunds

Lösung einblenden Lösung ausblenden

Question #140

Which aspect of an internal audit charter relates to the reporting structure for the internal audit activity?

A . Objectivity.
B . Responsibility.
C . Organization.
D . Authority.

Lösung einblenden Lösung ausblenden

Richtige Antwort: C
C

Explanation:

The organization aspect of an internal audit charter relates to the reporting structure for the internal audit activity. It establishes the position of the internal audit activity within the organization, and defines its functional and administrative reporting lines2. The organization aspect also ensures that the internal audit activity has sufficient independence and authority to perform its work effectively and objectively3.

Reference: 1: Internal Audit Charter [A Complete Guide + Template] – ModelOrganization2 2: The Internal Audit Charter IIA POSITION PAPER The Internal Audit Charter Blueprint to Assurance Success Introduction One of the great challenges every organization faces is assuring efficient and effective risk management D those policies and processes designed to leverage or mitigate risks to the organization’s advantage. When done well, internal audit provides that assurance as part of its role to protect and enhance organizational value. For internal audit to operate at the highest levels, it must have clearly defined and articulated marching orders from the governing body and management. This is most easily achieved with a well-designed internal audit charter. The IIA’s Perspective Every organization can benefit from internal audit, and an internal audit charter is vital to success of the activity (IIA Standard 1000). The charter is a formal document approved by the governing body and/or audit committee (governing body) and agreed to by management. It must define, at minimum: Internal audit’s purpose within the organization. Internal audit’s authority. Internal audit’s responsibility. Internal audit’s position within the organization. The IIA has produced model charters available to IIA members here in eight languages.

Why the Internal Audit Charter Is Important The charter provides the organization a blueprint for how internal audit will operate and helps the governing body to clearly signal the value it places on internal audit’s independence. Ideally it establishes reporting lines for the chief audit executive (CAE) that support that independence by reporting functionally to the governing body (or those charged with governance) and administratively to executive management. It also provides the activity the needed authority to achieve its tasks, e.g., unfettered access to records, personnel, and physical properties relevant to performing its work. KEY TAKEAWAYS The internal audit charter is vital to internal audit’s success and should be reviewed annually by the governing body. The internal audit charter should be approved by the governing body and agreed to by senior management. The charter should at a minimum include internal audit’s purpose and mission, authority, responsibility, its independent reporting relationships, scope and requirement to conform to IIA Standards. The internal audit charter should include details of how the internal audit activity will assess and report on the quality of the internal audit activity.1 3: Charter | Internal Audit4