IIA IIA-CIA-Part2 Exam With Confidence Using Practice Dumps

When employees continue to violate segregation-of-duty controls despite previous recommendations, the most effective approach is to recommend appropriate awareness training. This training can help employees understand the importance of these controls and how to comply with them, addressing the root cause of the violations. References: = IIA Standard 2130 - Control and IIA Practice Guide: “Auditing Segregation of Duties”.

Comprehensive and Detailed Explanation:

When risks are organized by processes, audits capture interfaces between organizational units (A) — i.e., the handoffs where errors and control breakdowns often occur. This approach ensures risks are evaluated across functional boundaries, improving coverage and understanding of interdependencies. Option B is incorrect — process-based audits can be more time-consuming, not less. Option C is subjective and not guaranteed. Option D exaggerates — no audit achieves "true completeness." The recognized advantage is that process-based audits capture risk and control interactions across departments, aligning with best practices in risk-based auditing.

Stratified sampling is used when the population can be divided into distinct subgroups (strata) that differ significantly from each other but are internally homogeneous. In the context of auditing, revenue earned through cash receipts or as receivables would have different characteristics and risk profiles. Stratifying the population allows the auditor to ensure that each subgroup is adequately represented in the sample, leading to more reliable and accurate audit conclusions.

The Institute of Internal Auditors (IIA) Practice Guide: Audit Sampling

IIA Standard 2320 - Analysis and Evaluation