IIA-CIA-Part3 Exam Dumps - Business Knowledge for Internal Auditing

Go to page:

<< First
Prev
1
2
3
4
5
6
7
Next
Last >>

Question # 25

Which of the following is an example of a physical control designed to prevent security breaches?

Preventing database administrators from initiating program changes

Blocking technicians from getting into the network room.

Restricting system programmers' access to database facilities

Using encryption for data transmitted over the public internet

Full Access

Question # 26

An organization buys equity securities for trading purposes and sells them within a short time period. Which of the following is the correct way to value and report those securities at a financial statement date?

At fair value with changes reported in the shareholders' equity section.

At fair value with changes reported in net income.

At amortized cost in the income statement.

As current assets in the balance sheet

Full Access

Question # 27

Which of the following statements is true regarding user-developed applications (UDAs)?

UDAs are less flexible and more difficult to configure than traditional IT applications.

Updating UDAs may lead to various errors resulting from changes or corrections.

UDAs typically are subjected to application development and change management controls.

Using UDAs typically enhances the organization's ability to comply with regulatory factors.

Full Access

Question # 28

While auditing an organization's customer call center, an internal auditor notices that Key performance indicators show a positive trend, despite the fact that there have been increasing customer complaints over the same period. Which of the following audit recommendations would most likely correct the cause of this inconsistency?

Review the call center script used by customer service agents to interact with callers, and update the script if necessary.

Be-emphasize the importance of call center employees completing a certain number of calls per hour.

Retrain call center staff on area processes and common technical issues that they will likely be asked to resolve.

Increase the incentive for call center employees to complete calls quickly and raise the number of calls completed daily

Full Access

Question # 29

An employee was promoted within the organization and relocated to a new office in a different building. A few months later, security personnel discovered that the employee's smart card was being used to access the building where she previously worked. Which of the following security controls could prevent such an incident from occurring?

Regular review of logs.

Two-level authentication.

Photos on smart cards.

Restriction of access hours.

Full Access

Question # 30

According to IIA guidance, which of the following links computers and enables them to -communicate with each other?

Application program code

Database system

Operating system

Networks

Full Access

Question # 31

An organization has instituted a bring-your-own-device (BYOD) work environment. Which of the following policies best addresses the increased risk to the organization's network incurred by this environment?

Limit the use of the employee devices for personal use to mitigate the risk of exposure to organizational data.

Ensure that relevant access to key applications is strictly controlled through an approval and review process.

Institute detection and authentication controls for all devices used for network connectivity and data storage.

Use management software scan and then prompt parch reminders when devices connect to the network

Full Access

Question # 32

An investor has acquired an organization that has a dominant position in a mature. slew-growth Industry and consistently creates positive financial income.

Which of the following terms would the investor most likely label this investment in her portfolio?

A star

A cash cow

A question mark

A dog

Full Access

Go to page: