Summer Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70track

Free IIA IIA-CIA-Part3 Practice Exam with Questions & Answers | Set: 8

Questions 106

An internal audit engagement team found that the risk register of the project under review did not include significant risks identified by the internal audit function. The project manager explained that risk register preparations are facilitated by risk managers and that each project’s risk review follows the same set of questions. Which of the following recommendations will likely add the greatest value to the project management process of the organization?

Options:
A.

Update the risk register of the project with the newly identified risks

B.

Train senior management on risk management principles

C.

Revise the methodology of the project risk identification process

D.

Reassign the responsibility of risk register completion to risk managers

IIA IIA-CIA-Part3 Premium Access
Questions 107

All of the following are possible explanations for a significant unfavorable material efficiency variance except:

Options:
A.

Cutbacks in preventive maintenance.

B.

An inadequately trained and supervised labor force.

C.

A large number of rush orders.

D.

Production of more units than planned for in the master budget.

Questions 108

What relationship exists between decentralization and the degree, importance, and range of lower-level decision making?

Options:
A.

Mutually exclusive relationship.

B.

Direct relationship.

C.

Intrinsic relationship.

D.

Inverse relationship.

Questions 109

An internal auditor was assigned to test for ghost employees using data analytics. The auditor extracted employee data from human resources and payroll. Using spreadsheet functions, the auditor matched data sets by name and assumed that employees who were not present in each data set should be investigated further. However, the results seemed erroneous, as very few employees matched across all data sets. Which of the following data analytics steps has the auditor most likely omitted?

Options:
A.

Data analysis.

B.

Data diagnostics.

C.

Data velocity.

D.

Data normalization.

Questions 110

Which of the following best describes a man-in-the-middle cyber-attack?

Options:
A.

The perpetrator is able to delete data on the network without physical access to the device.

B.

The perpetrator is able to exploit network activities for unapproved purposes.

C.

The perpetrator is able to take over control of data communication in transit and replace traffic.

D.

The perpetrator is able to disable default security controls and introduce additional vulnerabilities

Questions 111

Which of the following is a potential risk for an organization that allows employees to use their personal devices to conduct business?

Options:
A.

Less efficiency.

B.

Lower employee satisfaction.

C.

Higher organizational costs on devices.

D.

Increased exposure to malware attacks.

Questions 112

During an internal audit engagement, it was found that several vendors were on a government sanctions list and must no longer be traded with. Which of the following would most effectively mitigate the risk of noncompliance with sanctions lists that are updated regularly?

Options:
A.

Agreements with sanctioned vendors discovered by internal audit will be placed on hold until further notice from the government

B.

A new procedure of vendor onboarding will be implemented to ensure that all new vendors undergo screenings against the sanctions list

C.

Controls will be embedded in the vendor management processes to ensure that new and existing vendors are compliant with changes to the sanctions list

D.

The legal team will be asked to prepare counter arguments to dispute audit findings and potential inquiries from the governmental authority

Questions 113

Which of the following is a systems software control?

Options:
A.

Restricting server room access to specific individuals.

B.

Housing servers with sensitive software away from environmental hazards.

C.

Ensuring that all user requirements are documented.

D.

Performing intrusion testing on a regular basis.

Questions 114

Which of the following engagement observations would provide the least motivation for management to amend or replace an existing cost accounting system?

Options:
A.

The distorted unit cost of a service is 50 percent lower than the true cost, while the true cost is 50 percent higher than the competition ' s cost.

B.

The organization is losing $1,000,000 annually because it incorrectly outsourced an operation based on information from its current system.

C.

The cost of rework, hidden by the current system, is 50 percent of the total cost of all services.

D.

Fifty percent of total organizational cost has been allocated on a volume basis.

Questions 115

Internal auditors want to increase the likelihood of identifying very small control and transaction anomalies in their testing that could potentially be exploited to cause material breaches. Which of the following techniques would best meet this objective?

Options:
A.

Analysis of the full population of existing data.

B.

Verification of the completeness and integrity of existing data.

C.

Continuous monitoring on a repetitive basis.

D.

Analysis of the databases of partners, such as suppliers.

Questions 116

Which of the following is a key characteristic of a zero-based budget?

Options:
A.

A zero-based budget provides estimates of costs that would be incurred under different levels of activity.

B.

A zero-based budget maintains focus on the budgeting process.

C.

A zero-based budget is prepared each year and requires each item of expenditure to be justified.

D.

A zero-based budget uses input from lower-level and middle-level managers to formulate budget plans.

Questions 117

In light of increasing emission taxes in the European Union, a car manufacturer introduced a new middle-class hybrid vehicle specifically for the European market only. Which of the following competitive strategies has the manufacturer used?

Options:
A.

Reactive strategy.

B.

Cost leadership strategy.

C.

Differentiation strategy.

D.

Focus strategy

Questions 118

What impact is there to liabilities on the balance sheet when ending inventory is overstated?

Options:
A.

There is no effect on liabilities.

B.

Liabilities are overstated.

C.

Liabilities are understated.

D.

Inventory errors affect income statement only.

Questions 119

Which of the following is the most important contract term to audit, because it typically impacts business efficiency?

Options:
A.

Warranty service.

B.

Extraordinary circumstance clause.

C.

Indemnities.

D.

Limitation of liability.

Questions 120

Which of the following concepts of managerial accounting is focused on achieving a point of low or no inventory?

Options:
A.

Theory of constraints.

B.

Just-in-time method.

C.

Activity-based costing.

D.

Break-even analysis