Which of the following controls refers to requiring employees to use a combination of PINs, passwords, and/or biometrics to access an organization ' s smart device apps and data?
According to IIA guidance, which of the following would be the best first stop to manage risk when a third party is overseeing the organization ' s network and data?
According to 11A guidance on IT, which of the following are indicators of poor change management?
1. Inadequate control design.
2. Unplanned downtime.
3. Excessive troubleshooting .
4. Unavailability of critical services.
An organization has a declining inventory turnover but an Increasing gross margin rate, Which of the following statements can best explain this situation?
Which of the following control techniques would minimize the risk of interception during transmission in an electronic data interchange system?
Encryption.
Traffic padding.
Edit checks.
Structured data format.
According to IIA guidance, which of the following corporate social responsibility activities is appropriate for the internal audit activity to perform?
A financial technology startup consists of self-managed teams. Although each team can make proposals to other teams, decision-making lies within each individual team.
Which of the following risks could arise from this organizational structure?
A multinational organization allows its employees to access work email via personal smart devices. However, users are required to consent to the installation of mobile device management (MDM) software that will remotely wipe data in case of theft or other incidents. Which of the following should the organization ensure in exchange for the employees ' consent?
Which of the following is a result of Implementing on e-commerce system, which relies heavily on electronic data interchange and electronic funds transfer, for purchasing and biting?
Which of the following controls is the most effective for ensuring confidentially of transmitted information?
Which of the following authentication device credentials is the most difficult to revoke when an employee ' s access rights need to be removed?
An organization has an immediate need for servers, but no time to complete capital acquisitions. Which of the following cloud services would assist with this situation?
Which of the following is a characteristic of using a hierarchical control structure?
Which of the following principles is shared by both hierarchical and open organizational structures?
A superior can delegate the authority to make decisions but cannot delegate the ultimate responsibility for the results of those decisions.
A supervisor ' s span of control should not exceed seven subordinates.
Responsibility should be accompanied by adequate authority.
Employees at all levels should be empowered to make decisions.
An internal auditor is completing an access control assessment of a telecommunication organization’s offsite facility.
Which of the following physical security measures would best prevent unauthorized access to the facility?
|
PDF + Testing Engine
|
|---|
|
$49.5 |
|
Testing Engine
|
|---|
|
$37.5 |
|
PDF (Q&A)
|
|---|
|
$31.5 |
IIA Free Exams |
|---|
|