The risk remaining after management takes action to reduce the impact and likelihood of an adverse event is called residual risk.
Information related to either the elements outside the organization’s control or to elements that the organization can control at least to some extent is called:
The degree of risk on a board-based level, which a company or other entity is willing to accept in pursuit of its goals, is referred to as:
What has the ability to combine both qualitative and quantitative data in imaginative ways?
Proficiency in initiating new ideas and leading people in a new direction is called:
Which of the following is Correct?
If control risk is although minimum, extensive substantive testing will be necessary to determine the validity of transactions and data.
The four domains of emotional intelligence includes; Self-awareness, Self-management, Social awareness and:
Determination that the evidence has a logical relationship to the findings is known as:
Which of the following is NOT the potential benefit of the CSA to the internal auditing?
To articulate performance objectives and provide a means of evaluating whether the objectives have been achieved, this is the goal of:
What describes the organization’s basic philosophy or core operating principles?
Which of the following is correct?
What assesses the quality of performance over time?
The ability to manage yourself and your responsibilities is called:
Tall organization structures have a large number of levels between the top of the organization and the bottom.
Which of the following is Correct?
Compliance tests are procedures designed to verify whether controls are being applied in the manner described in the flowcharts, questionnaires etc.
Weak internal controls, lack of fraud policy, fiscal problems are all fraud warning signs of:
Control self-assessment questions have which following categories?
Which of the following is Correct?
The internal audit activity should evaluate risk exposures relating to the organization’s risk management system, is:
A process for gathering information, without detailed verification, on the activity being examined is called:
_________ refers to recommended actions should take into account relevant resource limitations.
Effective and efficient use of the entity’s resources is called:
Which of the following is NOT the step involved in strategic planning process?
Which activities are designed and implemented to reduce, or otherwise manage, risk at levels that were determined to be acceptable to the management and board?
Votes are cast anonymously and all responses are confidential is one of the advantages of:
Which of the following is NOT the technique for risk management?
New employees, consultants and contractors must receive security awareness training and supporting documentation at the time of employment refers to:
Comparison of cost of a program or activity to a measurable unit of output or outcome is called cost-residuary impact.
What provide means for evaluating the use of inputs to achieve outputs?
Which structures characterized by fast information flow between levels of the organization and high employee satisfaction?
The documented or tangible control tools used by an organization such as policies and procedures are known as:
To provide management with information to mitigate the negative consequences associated with accomplishing the organization’s objectives is the:
Which of the following is Correct?
What are influenced by size and complexity of the activity being examined, and by the geographical dispersion of the activity?
When internal auditors establishes trust and thus provides the basis for reliance on their judgment, this refers to:
Which of the following is NOT the purpose of an organization that uses self-assessment to have a formal, documented process that allows management and work teams to participate in a structured manner?
Copyright © 2021-2024 CertsTopics. All Rights Reserved
