IIA iia cia part1 practice test

Certified Internal Auditor - Part 1 The Internal Audit Activitys Role in Governance Risk and Control

Last exam update: May 14 ,2024
Page 1 out of 13. Viewing questions 1-15 out of 187

Question 1

If the skills and competencies are not present within the internal audit activity to complete an ad-hoc
assurance engagement, which of the following is an acceptable resolution?

  • A. Politely decline the engagement due to a lack of qualified staff available at the time.
  • B. Complete the engagement as requested, with the best of the current staff’s abilities.
  • C. Consider using employees from other departments in the organization on the audit team
  • D. Change the scope of the testing to ensure that only available staff proficiencies are used.
Mark Question:
Answer:

C

User Votes:
A
50%
B
50%
C 1 votes
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 2

When taken by a chief audit executive, which of the following actions would be most likely to
prevent division exaggerating sales reports?
1) Announcing a series of internal audit engagements focusing on compliance with corporate sales-
reporting
2) Asking the president and the board to issue a statement of corporate policy stressing the
importance of account reporting and the negative consequences of intentional misreporting.
3) Setting up a hotline for employees to report fraudulent behavior anonymously.
4) Assisting the controller in developing and monitoring a series of business process indicators ,
which are history with, but independent of sales.

  • A. 1 and 2 only
  • B. 2 and 3 only
  • C. 2 and 4 only
  • D. 3 and 4 only
Mark Question:
Answer:

B

User Votes:
A
50%
B
50%
C
50%
D 1 votes
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 3

Which of the following best describes the risk contained in an initial public offering for a new stock?

  • A. Residual risk
  • B. Net risk
  • C. Inherent risk
  • D. Underlying risk
Mark Question:
Answer:

C

User Votes:
A
50%
B
50%
C 1 votes
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 4

Which of the following actions should the internal audit activity take during an audit engagement
when examining the effectiveness of risk management processes?

  • A. Evaluate how the organization manages fraud risk
  • B. Establish procedures for improving risk management processes.
  • C. Ensure risk responses are aligned with industry standards.
  • D. Verify that organizational objectives are aligned with each department’s objctives.
Mark Question:
Answer:

A

User Votes:
A
50%
B
50%
C 1 votes
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 5

A large sales organization maintains a system of internal control according to the COSO model and
has updated its code of conduct. This change relates to which component of the COSO framework?

  • A. Control activities.
  • B. Information and communication.
  • C. Commitment.
  • D. Control environment.
Mark Question:
Answer:

D

User Votes:
A
50%
B 1 votes
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 6

Which of the following offers the best evidence that the internal audit activity has achieved
organizational independence?

  • A. An independent third party has assessed the organization's system of internal controls to be adequate and effective.
  • B. The chief audit executive reports both functionally and administratively to the CEO.
  • C. The internal audit charter is drafted properly and approved by the appropriate parties.
  • D. The mission statement and strategy of the internal audit activity demonstrates alignment to organizational objectives.
Mark Question:
Answer:

B

User Votes:
A 1 votes
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 7

Which of the following is an example of a risk avoidance strategy?

  • A. Hedging against exchange rate variations.
  • B. Limiting access to an organization's data center.
  • C. Selling a nonstrategic business unit.
  • D. Outsourcing a high-risk activity.
Mark Question:
Answer:

C

User Votes:
A
50%
B 1 votes
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 8

Which of the following statements accurately describes the responsibility of the internal audit
activity regarding IT governance?
1.
The internal audit activity does not have any responsibility because IT governance is the
responsibility of the board and senior management of the organization.
2.
The internal audit activity must assess whether the IT governance of the organization supports
the organization's strategies and objectives.
3.
The internal audit activity may assess whether the IT governance of the organization supports
the organization's strategies and objectives.
4. The internal audit activity may accept requests from management to perform advisory services
regarding how the IT governance of the organization supports the organization's strategies and
objectives.

  • A. 1 only.
  • B. 4 only.
  • C. 2 and 4.
  • D. 3 and 4.
Mark Question:
Answer:

A

User Votes:
A
50%
B
50%
C
50%
D 1 votes
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 9

Which of the following documents is most appropriate in promoting the objectivity of the internal
audit activity?

  • A. Usage of IT system policy.
  • B. Risk management framework.
  • C. Acceptance of gifts policy.
  • D. Personal responsibility policy.
Mark Question:
Answer:

C

User Votes:
A
50%
B 1 votes
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 10

Management is developing and implementing a risk and control framework for use throughout the
organization. Which of the following elements should be included in the organization's control
framework?
1. Appropriate levels of authority and responsibility.
2. Supervision of staff and appropriate review of work.
3. The seniority of management in the organization.
4. The ability to trace each transaction to an accountable and responsible individual.

  • A. 1,2, and 3.
  • B. 1.2, and 4.
  • C. 1.3, and 4.
  • D. 2, 3, and 4.
Mark Question:
Answer:

D

User Votes:
A
50%
B 1 votes
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 11

With regard To IT governance, which of the following is the most effective and appropriate role for
the internal audit activity?

  • A. Independently evaluate the skills and experience of potential chief information officer candidates to assess the best fit based on the organization's risk appetite.
  • B. Evaluate the organization's governance standards and assess IT-related activities to identify gaps and develop policies, ensuring alignment with the organization's risk appetite.
  • C. Assist management in interpreting complex IT-related privacy and security risk exposures and evaluating potential mitigation strategies.
  • D. Assess whether governance activities are aligned with the organization's risk appetite and take into consideration emerging risks.
Mark Question:
Answer:

D

User Votes:
A
50%
B
50%
C
50%
D 1 votes
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 12

As a matter of policy, the chief audit executive routinely rotates internal audit staff assignments and
periodically interviews the staff to discuss the potential for conflicts of interest. These actions help
fulfill which of the following internal audit mandates?

  • A. Organizational independence.
  • B. Professional objectivity.
  • C. Due professional care.
  • D. Individual proficiency.
Mark Question:
Answer:

B

User Votes:
A 1 votes
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 13

The manager for an organization's accounts payable department resigned her post in that capacity.
Three months later, she was recruited to the internal audit activity and has been working with the
audit team for the last eight months. Which of the following assignments would the newly hired
internal auditor be able to execute without any impairments to independence or objectivity?

  • A. An operations audit of the accounts payable department.
  • B. A consulting engagement related to a new accounts payable optimization initiative.
  • C. A review of the employees' sports club finances, which are overseen by the chief audit executive.
  • D. An assurance review for a sales program on which she previously provided consultation.
Mark Question:
Answer:

C

User Votes:
A
50%
B 1 votes
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 14

An internal auditor needs to recommend a policy element to be included in an organization's code of
ethics. Which of the following recommendations would be most effective?

  • A. Ethics should vary with local customs in the organization's foreign operations.
  • B. Whistleblowing should be discouraged because it can cause distrust among employees.
  • C. Ethical behavior should be incorporated into performance evaluations.
  • D. Senior management should be granted specific exemptions to the code of ethics.
Mark Question:
Answer:

C

User Votes:
A
50%
B
50%
C 1 votes
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 15

Which of the following types of fraud includes embezzlement?

  • A. Fraudulent statements.
  • B. Bribery.
  • C. Misappropriation of assets.
  • D. Corruption.
Mark Question:
Answer:

C

User Votes:
A
50%
B
50%
C 1 votes
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000
To page 2