100% tevredenheidsgarantie Direct beschikbaar na betaling Zowel online als in PDF Je zit nergens aan vast
logo-home
Eerder door jou gezocht
Eerder door jou gezocht
logo
CISA Domain 1 Questions & 100% Correct Answers €13,17   In winkelwagen
Snel navigeren naar
Voorbeeld
  2.  
  3. CISA
  4.  
  5. CISA

Tentamen (uitwerkingen)

CISA Domain 1 Questions & 100% Correct Answers
 6 keer bekeken  0 keer verkocht
  • Vak
  • CISA
  • Instelling
  • CISA

An IS auditor is conducting a compliance test to determine whether controls support management policies and procedures. The test will assist the IS auditor to determine: :~~ That the control is operating as designed Compliance tests can be used to test the existence and effectiveness of a d...

[Meer zien]

Voorbeeld 4 van de 65  pagina's

Document informatie

  • 9 september 2024
  • 65
  • 2024/2025
  • Tentamen (uitwerkingen)
  • Vragen en antwoorden

Onderwerpen

  • cisa domain 1 questions 100 correct answers
  • an is auditor is conducting a compliance test to d

Geschreven voor

  • CISA
  • CISA

Verkoper

avatar-seller
ExamArsenal

Ontvangen beoordelingen

Voorbeeld van de inhoud

1 | P a g e | © copyright 2024/2025 | Grade A+




CISA Domain 1 Questions & 100%
Correct Answers
An IS auditor is conducting a compliance test to determine whether controls

support management policies and procedures. The test will assist the IS auditor to

determine:


✓ :~~ That the control is operating as designed




Compliance tests can be used to test the existence and effectiveness of a defined

process. Understanding the objective of a compliance test is important. IS auditors

want reasonable assurance that the controls they are relying on are effective. An

effective control is one that meets management expectations and objectives.




When developing a risk management program, what is the first activity to be

performed?

✓ :~~ Inventory of assets.




Identification of the assets to be protected is the first step in developing a risk

management program.




The primary purpose of an IT forensic audit is:




Master01 | September, 2024/2025 | Latest update

, 2 | P a g e | © copyright 2024/2025 | Grade A+


✓ :~~ The systemic collection and analysis of evidence after a system

irregularity.




Due to resource constraints of the IS audit team, the audit plan as originally

approved cannot be completed. Assuming that the situation is communicated in

the audit report, which course of action is most acceptable:




Test the adequacy of the control design

Test the operational effectiveness of the control

Focus on auditing high risk areas

Relying on management testing of controls.

✓ :~~ Focus on high risk areas. Reducing the scope and focusing on auditing

high-risk areas is the bets course of action.




While planning an IS audit, an assessment of risk should be made to provide:

✓ :~~ Reasonable assurance that the audit will cover material items.




ISACA IS Audit and Assurance Guideline 2202 (Risk Assessment in Planning) states

that the applied risk assessment approach should help with the prioritization and

scheduling process of the IS audit and assurance work. It should support the

selection process of areas and items of audit interest and the decision process to

design and conduct particular IS audit engagements.



Master01 | September, 2024/2025 | Latest update

, 3 | P a g e | © copyright 2024/2025 | Grade A+




Which of the following best describes the purpose of performing a risk assessment

in the planning phase of an IS audit:




Establish adequate staffing requirements to complete the IS audit

To provide reasonable assurance that all material items will be addressed

To determine the skills required to perform the IS audit

To develop the audit program and procedures

✓ :~~ To provide reasonable assurance that all material items will be

addressed.




A risk assessment helps focus the audit procedures on the highest risk areas

included in the scope of the audit.




A financial institution with multiple branch offices has an automated control that

requires the branch manager to approve transactions more than a certain amount.

What type of audit control is this?

✓ :~~ Preventative.




An IS auditor is validating a control that involved a review of system generated

exception reports. Which of the following is the best evidence of the effectiveness

of the control.


Master01 | September, 2024/2025 | Latest update

, 4 | P a g e | © copyright 2024/2025 | Grade A+




1- Walkthrough with the reviewer of the operation of the control

2- System generated exception report for the review period with the reviewers

sign off

3- A sample system generated exceptions report for the review period, with

follow-up action items noted by the reviewer

4- Management's confirmation of the effectiveness of the control for the review

period.

✓ :~~ A sample system generated exceptions report for the review period,

with follow-up action items noted by the reviewer.




A sample of a system generated report with evidence that the reviewer followed

up on the exception represents the best possible evidence of the effective

operation of the control because there is documented evidence that the reviewer

has reviewed and taken actions based on the exception report.




Which of the following is the most important skill an IS auditor should develop to

understand the constraints of conducting an audit:




1 - Contingency Planning

2 - IS Management resource allocation

3 - Project Management



Master01 | September, 2024/2025 | Latest update

Voordelen van het kopen van samenvattingen bij Stuvia op een rij:

Verzekerd van kwaliteit door reviews

Verzekerd van kwaliteit door reviews

Stuvia-klanten hebben meer dan 700.000 samenvattingen beoordeeld. Zo weet je zeker dat je de beste documenten koopt!

Snel en makkelijk kopen

Snel en makkelijk kopen

Je betaalt supersnel en eenmalig met iDeal, creditcard of Stuvia-tegoed voor de samenvatting. Zonder lidmaatschap.

Focus op de essentie

Focus op de essentie

Samenvattingen worden geschreven voor en door anderen. Daarom zijn de samenvattingen altijd betrouwbaar en actueel. Zo kom je snel tot de kern!

Veelgestelde vragen

Wat krijg ik als ik dit document koop?

Je krijgt een PDF, die direct beschikbaar is na je aankoop. Het gekochte document is altijd, overal en oneindig toegankelijk via je profiel.

Tevredenheidsgarantie: hoe werkt dat?

Onze tevredenheidsgarantie zorgt ervoor dat je altijd een studiedocument vindt dat goed bij je past. Je vult een formulier in en onze klantenservice regelt de rest.

Van wie koop ik deze samenvatting?

Stuvia is een marktplaats, je koop dit document dus niet van ons, maar van verkoper ExamArsenal. Stuvia faciliteert de betaling aan de verkoper.

Zit ik meteen vast aan een abonnement?

Nee, je koopt alleen deze samenvatting voor €13,17. Je zit daarna nergens aan vast.

Is Stuvia te vertrouwen?

4,6 sterren op Google & Trustpilot (+1000 reviews)

Afgelopen 30 dagen zijn er 79202 samenvattingen verkocht

Opgericht in 2010, al 14 jaar dé plek om samenvattingen te kopen

Start met verkopen
€13,17
  • (0)
  Kopen