Papersbyjol

Capability Maturity Models - ANSWERLevel 1 - Initial - processes are poorly controlled Level 2 - Managed - process is characterized for projects. Level 3 - Defined - documented process characterized for the organization and is proactive Level 4 - Quantitatively Managed - Process is measured and controlled. Quantitative quality goals can be reached. Level 5 - Optimizing - Focus is on process improvement Computer Aided Software Engineering (CASE) - ANSWERThe use of automated tools to aid i...

What is the definition of audit? - ANSWERAuditing is a detailed and specific evaluation of a process, procedure, organization, job function, or system, in which results are gathered and reported. What is the purpose of ethics? - ANSWERTo mandate the professional and personal conduct of auditors According to the ISACA Code of Ethics is an auditor allowed to share the results of an audit with other personnel? - ANSWERThe auditor must maintain confidentiality of the audit unless required by ...

In the Planning Stage, the primary goal is to... - ANSWERaddress audit objectives The BEST way to ensure payroll data accuracy is to ... - ANSWERcompare the payroll report to the input forms An IS Auditor would use code comparison software to look at... - ANSWERsource program controls without information from IS personnel (This makes the Auditor objective, independent, and relatively complete assurance of program changes) The decisions and actions of an IS Auditor are MOST likely to a...

A1-1: The internal audit department has written some scripts that are used for continuous auditing of some information systems. The IT department has asked for copies of the script so that they can use them for setting up a continuous monitoring process on key systems. Would sharing these with IT affect the ability of the IS auditors to independently and objectively audit the IT function? - ANSWERC. Sharing the scripts is permissible as long as IT recognizes that audits still may still be conduc...

Audit Risk - ANSWERThe risk that the audit report might contain a material error or that an error might exist that the auditor did not detect Control Risk - ANSWERThe risk that an auditor could lose control, errors could be introduced, or errors may not be corrected in a timely manner (if ever). Business Risk - ANSWERThese are risks that is inherent in the business or industry itself. They may be regulatory, contractual, or financial. Continuity Risk - ANSWERThe risk the business faces ...

Who is responsible for the governance of the enterprise? - ANSWERBoard of Directors What is corporate governance's purpose? - ANSWERto help build an environment of trust, transparency, and accountability to foster long-term investment, financial stability, and business integrity All stakeholders provide ______ into IT-decision making processes - ANSWERinput IT resource management - ANSWERmaintain updated inventory of IT assets and address risk management Performance management - A...

Audit Function - ANSWEREnsures that the diverse tasks performed and achieved by the audit team will fulfill objectives, while preserving audit independence and competence. Information Systems - ANSWERThe combination of strategic, managerial, and operational activities involved in gathering, processing, storing, distributing and using information and its related technologies. Information Technology - ANSWERThe hardware, software, communication and other facilities used to input, store, proc...

Audit Charter (P.32) - ANSWERThe overarching document that outlines the scope, authority, and responsibilities of the internal audit function. (General audits) Engagement Letter (P.32) - ANSWERThe overarching document that outlines the scope, authority, and responsibilities of the external audit function. (Focused audits) Detective Controls (P.43) - ANSWERUse controls that detect and report the occurrence of an error, omission, or malicious act. Corrective Controls (P.43) - ANSWERCo...

Acceptable use policy - ANSWERA policy that establishes an agreement between users and the enterprise and defines for all parties' the ranges of use that are approved before gaining access to a network or the Internet. Access control - ANSWERThe processes, rules and deployment mechanisms that control access to information systems, resources and physical access to premises. Access control list (ACL) - ANSWERAn internal computerized table of access rules regarding the levels of computer a...

true - ANSWEROne of the primary advantages of an object is that it contains reusable code. true - ANSWERDatabase management systems can be used to track orders, products, and customers; analyze weather data to make forecasts for the next several days; and summarize medical research results. true - ANSWERA primary key is a field or set of fields that uniquely identifies the record. true false - ANSWERUnfortunately, virtual reality applications do not allow views of real environments with...