CISA Exam Prep – Questions With Right Solutions
Save
Terms in this set (269)
By whom is the approval of the audit Higher Management
charter carried out?
What specific elements or information The scope, authority, and responsibility of the audit
ought to be incorporated within the department.
audit charter?
What is the main purpose of the audit Document the responsibility and authority of the
charter? audit department.
What is the document called that The audit charter.
confers authority upon the audit
department?
What is the main reason for assessing Understand the authority and responsibility of
or examining the structure and chart individuals.
of an organization?
Which type of audit is created for the IS Audit
purpose of gathering and assessing
both an information system and its
associated resources?
Which audit involves specific tests of Compliance audit
controls to demonstrate adherence to
specific regulatory or industry
standards?
,Which audit assesses the overall Integrated audit
objectives within an organization in
terms of safeguarding an asset's
efficiency and compliance?
Which audit involves the independent Functional audit
evaluation of software products,
verifying it's configuration items?
In which audit can an IS auditor assist Computer forensic audit
a forensic specialist in performing
3 multiple choice options
forensic investigations and conduct an
audit of the system to ensure
compliance?
What is the subsequent action once Discuss it with auditee management to find
the audit findings have been agreement on the findings
determined?
3 multiple choice options
When conducting a review of a critical Issue the audit report based on the available
application that is still in the planning information, highlighting the potential security
stage and certain evidence is not yet weaknesses and the requirement for follow-up audit
accessible, what actions should an IS testing.
auditor take?
3 multiple choice options
Upon observing inadequate controls Document the audit findings in the audit report
related to remote access for a crucial 3 multiple choice options
application, what steps should an IS
auditor undertake?
What steps should the audit team Audit evidence
follow to ensure the validation and
3 multiple choice options
substantiation of the audit results?
What actions must an IS auditor take Sufficient and appropriate audit evidence
to ensure that the audit conclusions 3 multiple choice options
are supported by evidence?
, What is the purpose of acquiring To provide reasonable basis of drawing a conclusion
sufficient audit evidence? 3 multiple choice options
What is the primary advantage of More reliability of data
having an audit team directly extract
3 multiple choice options
data from a general ledger system (or
any other system)?
What are the factors that favor the When the probability of error must be objectively
selection of statistical sampling over quantified
non-statistical sampling? 3 multiple choice options
In which of these risk scenarios can Detection risk
statistical sampling be employed as a
mitigation technique?
Which sampling technique is Attribute sampling
considered the most effective for
conducting compliance testing?
Which statement provides an accurate The confidence coefficient may be lowered if the
description of confidence auditor knows that internal controls are stringent
correlation? 3 multiple choice options
What is the most effective method to Compliance testing
verify the accurate processing of the
3 multiple choice options
100 most recent requests from new
users?
Statistical Sampling: A sampling method where each item in the
population has a known probability of being
selected, allowing auditors to make mathematically
valid inferences about the population.
Non-Statistical Sampling: A sampling method based on auditor judgment
rather than probability, without measurable statistical
confidence.
Save
Terms in this set (269)
By whom is the approval of the audit Higher Management
charter carried out?
What specific elements or information The scope, authority, and responsibility of the audit
ought to be incorporated within the department.
audit charter?
What is the main purpose of the audit Document the responsibility and authority of the
charter? audit department.
What is the document called that The audit charter.
confers authority upon the audit
department?
What is the main reason for assessing Understand the authority and responsibility of
or examining the structure and chart individuals.
of an organization?
Which type of audit is created for the IS Audit
purpose of gathering and assessing
both an information system and its
associated resources?
Which audit involves specific tests of Compliance audit
controls to demonstrate adherence to
specific regulatory or industry
standards?
,Which audit assesses the overall Integrated audit
objectives within an organization in
terms of safeguarding an asset's
efficiency and compliance?
Which audit involves the independent Functional audit
evaluation of software products,
verifying it's configuration items?
In which audit can an IS auditor assist Computer forensic audit
a forensic specialist in performing
3 multiple choice options
forensic investigations and conduct an
audit of the system to ensure
compliance?
What is the subsequent action once Discuss it with auditee management to find
the audit findings have been agreement on the findings
determined?
3 multiple choice options
When conducting a review of a critical Issue the audit report based on the available
application that is still in the planning information, highlighting the potential security
stage and certain evidence is not yet weaknesses and the requirement for follow-up audit
accessible, what actions should an IS testing.
auditor take?
3 multiple choice options
Upon observing inadequate controls Document the audit findings in the audit report
related to remote access for a crucial 3 multiple choice options
application, what steps should an IS
auditor undertake?
What steps should the audit team Audit evidence
follow to ensure the validation and
3 multiple choice options
substantiation of the audit results?
What actions must an IS auditor take Sufficient and appropriate audit evidence
to ensure that the audit conclusions 3 multiple choice options
are supported by evidence?
, What is the purpose of acquiring To provide reasonable basis of drawing a conclusion
sufficient audit evidence? 3 multiple choice options
What is the primary advantage of More reliability of data
having an audit team directly extract
3 multiple choice options
data from a general ledger system (or
any other system)?
What are the factors that favor the When the probability of error must be objectively
selection of statistical sampling over quantified
non-statistical sampling? 3 multiple choice options
In which of these risk scenarios can Detection risk
statistical sampling be employed as a
mitigation technique?
Which sampling technique is Attribute sampling
considered the most effective for
conducting compliance testing?
Which statement provides an accurate The confidence coefficient may be lowered if the
description of confidence auditor knows that internal controls are stringent
correlation? 3 multiple choice options
What is the most effective method to Compliance testing
verify the accurate processing of the
3 multiple choice options
100 most recent requests from new
users?
Statistical Sampling: A sampling method where each item in the
population has a known probability of being
selected, allowing auditors to make mathematically
valid inferences about the population.
Non-Statistical Sampling: A sampling method based on auditor judgment
rather than probability, without measurable statistical
confidence.
