최신 IIA-CRMA 무료덤프 - IIA Certification in Risk Management Assurance (CRMA)

문제1

Which of the following actions best demonstrates that an internal auditor is exercising due professional care?

A. The auditor recommends improvements for all of the organization's procedures and practices.

B. The auditor is alert to the possibility of fraud and activities where irregularities are most likely to occur.

C. The auditor performs thorough reviews and provides absolute assurance of regulatory compliance.

D. The auditor is cognizant of reducing travel expenses by combining a personal vacation with a business trip.

정답: B

문제2

Which of the following is most likely to be considered a control weakness?

A. Department managers initiate purchase requests that must be approved by the plant superintendent.

B. Vendor invoice payment requests are accompanied by a purchase order and receiving report.

C. Buyers promptly update the official vendor listing as new supplier sources become known.

D. Purchase orders are typed by the purchasing department using prenumbered forms.

정답: C

문제3

Which of the following types of fraud includes embezzlement?

A. Fraudulent statements.

B. Bribery.

C. Corruption.

D. Misappropriation of assets.

정답: D

문제4

If an engagement client disputes that a specific action or process is within the scope of the internal audit activity, what would be the most appropriate way for the internal audit activity (IAA) to respond?

A. Refer the client to the IAA's charter and the approved yearly audit plan, which includes the areas designated for audit in the current time period.

B. Terminate the audit engagement in full because an operational audit will not be productive without the client's cooperation.

C. Terminate only the specific action or process with which the client disagrees and work to determine a substitute function that will not impede further IAA or the client-audit relationship.

D. Seek the approval of senior management or the board in mediation, allowing an overseer to clarify the scope of the audit engagement for the client.

정답: A

문제5

According to IIA guidance, which of the following is the best example of a system application control?

A. A program change management control.

B. A system development life cycle control.

C. An input control over data integrity.

D. A physical security control over a data center.

정답: C

문제6

Which of the following statements accurately describes the responsibility of the internal audit activity regarding IT governance?
1. The internal audit activity does not have any responsibility because IT governance is the responsibility of the board and senior management of the organization.
2. The internal audit activity must assess whether the IT governance of the organization supports the organization's strategies and objectives.
3. The internal audit activity may assess whether the IT governance of the organization supports the organization's strategies and objectives.
4. The internal audit activity may accept requests from management to perform advisory services regarding how the IT governance of the organization supports the organization's strategies and objectives.

A. 1 only.

B. 4 only.

C. 3 and 4.

D. 2 and 4.

정답: A

문제7

An internal audit activity is using the auditing-by-element approach to audit the organization's controls around corporate social responsibility. Which of the following would be an element for the internal audit activity to consider?

A. Employees' families.

B. Marketplace competition.

C. Working conditions.

D. Shareholders and investors.

정답: A

문제8

Which of the following is an example of collusion?

A. A vendor sends a duplicate invoice with a new invoice number, and the accounts payable system fails to detect the duplication.

B. An employee includes a faked receipt in his expense claim, and the claim is signed by the employee's manager.

C. An employee works with the IT manager to develop a program for identifying duplicate invoice payments.

D. A vendor inflates the price of an item and remits a portion of the excess to the purchasing manager.

정답: D

문제9

Which of the following conditions is the most likely indicator of fraud?

A. A manager regularly assumes subordinates' duties.

B. Departmental reports are consistently issued in an untimely manner.

C. Commissions are paid based on verified increases to sales.

D. Lower earnings occur during the industry's down cycle.

정답: A

문제10

Which of the following responsibilities would fall under the role of the chief audit executive, rather than internal audit staff or the audit manager?

A. Set clear performance standards for internal auditors and the internal audit activity.

B. Manage and support a quality assurance and improvement program.

C. Apply problem-solving techniques for routine situations.

D. Maintain industry-specific knowledge appropriate to the audit engagements

정답: A

문제11

The chief audit executive (CAE) has been asked to manage the regulatory compliance function for the organization's retail store operations. Store operations are included in the annual audit plan.
Which of the following strategies best fulfills the requirements of the Standards regarding these audits?

A. Store operations audits can be fully executed with appropriate disclosure to the board.

B. A store operations compliance audit should be performed by a staff internal auditor under the direction of the CAE.

C. Store operations audits should be performed by an external service provider.

D. The scope of store operations audits should exclude compliance.

정답: C

문제12

Reviewing prior audit reports and supporting workpapers before an engagement starts enables an internal auditor to do which of the following?
1. To understand better the activity and processes that will be audited.
2. To identify the audit procedures that will be used during the engagement.
3. To ensure that matters of greatest vulnerability will be addressed.
4. To use the information obtained as evidence in the current engagement.

A. 4 only

B. 2, 3, and 4 only

C. 1 and 4 only

D. 1 and 3 only

정답: D

문제13

Management is developing and implementing a risk and control framework for use throughout the organization. Which of the following elements should be included in the organization's control framework?
1. Appropriate levels of authority and responsibility.
2. Supervision of staff and appropriate review of work.
3. The seniority of management in the organization.
4. The ability to trace each transaction to an accountable and responsible individual.

A. 1.2, and 4.

B. 1,2, and 3.

C. 2, 3, and 4.

D. 1.3, and 4.

정답: C

문제14

According to IIA guidance, which of the following is least compliant with the requirements regarding an internal auditor's need for objectivity?

A. An internal auditor performed an assurance engagement for the effectiveness of accounts payable access controls, one of which he previously helped to design.

B. An internal auditor participated in an audit of controls around absenteeism, despite providing some consultation on controls in this area earlier in the year.

C. An internal auditor assessed the effectiveness of controls over payroll software, which he had helped implement with a previous employer.

D. An internal auditor, previously employed in the quality assurance operations area, performed a consulting engagement for the operations manager.

정답: A

문제15

Which of the following statements is true regarding the use of non-statistical sampling in auditing control tests?

A. Non-statistical sample results must be projected to the population.

B. Lesser evidence is required to support a conclusion than for statistical sampling.

C. Sampling risk will be accurately quantified through non-statistical sampling.

D. It considers tolerable deviation rate more effectively than does statistical sampling.

정답: A

문제16

Which of the following is an example of a management control technique?

A. A risk assessment.

B. The control environment.

C. A budget.

D. The board of directors.

정답: C

문제17

A credit card company detects potential errors in credit card numbers by checking whether all entered numbers contain the correct amount of digits. This is an example of which of the following IT controls?

A. Balancing control activities.

B. Data integrity tests.

C. Logic test.

D. Check digits.

정답: C

문제18

Which of the following is a valid statement about the use of visual observations during an audit engagement?
1. Visual observations can be used to detect ineffective controls, idle resources, and safety hazards.
2. Visual observations can be used during both preliminary survey and fieldwork stages of the audit engagement.
3. Visual observations can provide unsubstantiated facts to management if the internal auditor believes the information is useful.
4. Visual observations can assist an auditor in determining if a material observation should be communicated through informal means to the organization's senior management.

A. 1 and 4 only

B. 1 and 2 only

C. 3 and 4 only

D. 2 and 3 only

정답: B

최신 IIA-CRMA 무료덤프 - IIA Certification in Risk Management Assurance (CRMA)

우리와 연락하기

유용한 링크

최신 업데이트