CONTROL OBJECTIVE ASSESSMENT (OA) EXAM TESTBANK
2026/2027 AND STUDY GUIDE ACCURATE EXAM COMPLETE REAL
QUESTIONS AND CORRECT VERIFIED ANSWERS WITH
RATIONALES (DETAILED ANSWERS) CURRENTLY UPDATED
VERSION 2026 EDITION |GUARANTEED PASS A+ |JUST RELEASED
|INSTANT DOWNLOAD PDF
1. An organization is implementing a new ERP system. Which of the following is
the PRIMARY benefit of integrating the General Ledger with the Supply Chain
Management module?
A) Improved inventory turnover ratios
B) Real-time visibility into the financial impact of procurement and logistics
C) Reduction in the number of vendors
D) Automated reconciliation of inventory valuation accounts
Correct Answer: D - Automated reconciliation ensures that the sub-ledger
(inventory) matches the general ledger in real-time, which is a primary internal
control benefit of integration, reducing manual effort and errors [citation:1].
Option B is a secondary benefit, while A and C are operational efficiencies.
2. Which of the following controls would BEST mitigate the risk of unauthorized
changes to the accounts receivable aging report?
A) Segregation of duties between the credit manager and the collections team
,B) Implementing mandatory password changes every 90 days
C) Restricting write-access to the report parameters based on user roles
D) Performing daily backups of the database
Correct Answer: C - Role-based access control (RBAC) limits who can modify
parameters (like aging dates) ensuring data integrity. Segregation (A) and
password changes (B) are important but do not directly prevent manipulation of the
specific report settings. Backups (D) are for disaster recovery.
3. In the context of the COBIT framework, which process is responsible for
ensuring that IT investments align with business objectives?
A) APO01 - Manage the IT Management Framework
B) APO05 - Manage Portfolio
C) DSS01 - Manage Operations
D) BAI03 - Manage Solutions Identification and Build
Correct Answer: B - APO05 specifically focuses on managing the project and
investment portfolio to ensure business value and alignment with enterprise goals.
APO01 sets the overall framework, while DSS and BAI are execution and build
phases.
,4. A system administrator has the ability to create new user accounts and post
adjusting journal entries. What type of threat does this scenario primarily
introduce?
A) Eavesdropping
B) Denial of Service
C) Incompatible duties
D) Data leakage
Correct Answer: C - This represents a violation of segregation of duties. The
administrator could create a dummy account and post adjusting entries to hide
fraud. Incompatible duties involve combining authorization and recording
functions.
5. Which data analytics technique is MOST suitable for identifying unusual
patterns or outliers in financial transactions that may indicate fraud?
A) Regression analysis to forecast sales
B) Benford's Law analysis
C) Descriptive statistics for mean and median
D) Data visualization for presentation
, Correct Answer: B - Benford's Law is specifically used in forensic accounting to
detect anomalies in naturally occurring data sets, identifying numbers that are
statistically improbable.
6. When designing a new AIS, the development team uses an iterative approach
where the system is built in small increments. This methodology is known as:
A) Waterfall
B) Agile
C) Prototyping
D) Rapid Application Development (RAD)
Correct Answer: B - Agile methodology is characterized by iterative cycles
(sprints) delivering working software in increments. While prototyping is similar,
Agile is the broader, most current framework used.
7. Which of the following is a key feature of a Blockchain ledger that is most
relevant to auditing?
A) High transaction throughput
B) Centralized authority