Papersbyjol

When evaluating the collective effect of preventive, detective and corrective controls within a process, an IS auditor should be aware of which of the following? A. The point at which controls are exercised as data flow through the system B. Only preventive and detective controls are relevant C. Corrective controls are regarded as compensating D. Classification allows an IS auditor to determine which controls are missing - ANSWERA. An IS auditor who has discovered unauthorized transaction...

Al-l The internal audit department wrote some scripts that are used for continuous auditing of some information systems. The IT department asked for copies of the scripts so that they can use them for setting up a continuous monitoring process on key systems. Does sharing these scripts with IT affect the ability of the IS auditors to independently and objectively audit the IT function? A. Sharing the scripts is not permitted because it gives IT the ability to pre-audit systems and avoid an ac...

01. An audit charter should: a) be dynamic and change to coincide with the changing nature of technology and the audit profession. b) clearly state audit objectives for, and the delegation of, authority to the maintenance and review of internal controls. c) document the audit procedures designed to achieve the planned audit objectives. d) outline the overall authority, scope and responsibilities of the audit function. - ANSWERAnswer: d) outline the overall authority, scope and responsib...

Planning, fieldwork/documentation, and reporting/follow-up - ANSWERMajor phases of the typical audit process Audit Charter - ANSWERAn overarching document that covers the entire scope of audit activities in an entire entity. Engagement Letter - ANSWERMore focused on a particular audit exercise that is sought to be initiated in an organization with a specific objective in mind. Short-Term Planning - ANSWERConsiders audit issues that will be covered during the year. Long-Term Planning ...

Chapter 1 - ANSWER Source code - ANSWERuncompiled, archive code Object code - ANSWERcompiled code that is distributed and put into production; not able to be read by humans Inherent risk - ANSWERthe risk that an error could occur assuming no compensating control exist Control risk - ANSWERthe risk that an error exists that would not be prevented by internal controls Detection risk - ANSWERthe risk that an error exists, but is not detected. The risk that an IS auditor may use an in...

In a public key infrastructure (PKI), which of the following may be relied upon to prove that an online transaction was authorized by a specific customer? Correct A. Nonrepudiation B. Encryption C. Authentication D. Integrity . - ANSWERYou are correct, the answer is A. A. Nonrepudiation, achieved through the use of digital signatures, prevents the senders from later denying that they generated and sent the message. B. Encryption may protect the data transmitted ove...

Information system auditors have identified separation of duties in enterprise resource planning (ERP) systems. Which of the following is the best way to prevent repetitive configuration from occurring? A. Use a role-based model to grant user access B. Regularly monitor access rights C. Correcting separation of duties D. Reference standard user access matrix - ANSWERA. Use a role-based model to grant user access Which of the following should be the most important factor driving a single ...

____ is an important factor in diamond jewelry sales. - ANSWERRomance Diamond is a mineral made of a single element: ____ - ANSWERCarbon A diamond's value is based on its own unique combination of the ____ - ANSWERFour Cs ____ normally have a bigger impact on a diamond's beauty and value than blemishes - ANSWERInclusions Diamond is the most ____ gemstone - ANSWERDurable Diamonds are expensive because they're ____ and costly to mine - ANSWERRare ____ ____ are effective ...

Compared to a jewelry item's benefits, its features tend to be more - ANSWERTechnical A temporary obstacle that delays or even stops a sale is called a(n) - ANSWERObjection The number of successful sales compared to the number of attempts is known as the - ANSWERClosing ratio A well-organized sales presentation should include - ANSWERAn exchange of information

Value - ANSWERThe combination of the Four C's relates primarily to 0.200 gram - ANSWERThe metric carat equals Facets - ANSWERThe small, flat, polished surfaces on a finished diamond are called - ANSWERMost diamonds used in jewelry are Carbon - ANSWERDiamond is composed primarily of Fancy cuts - ANSWERGem shapes and cutting styles other than the standard round brilliant are called Blemishes - ANSWERClarity characteristics confined to the surface of a polished diamond are cal...