Which of the following best describes a proactive role for the internal audit activity with regard to the organization ' s ethics program?
During a payroll audit, the internal auditor discovered that several individuals who have the same position classification as he are earning a significantly higher salary. The auditor noted the names and amounts of each, and he planned to prepare a request to the chief audit executive for a salary increase based on this information. Which of the following IIA Code of Ethics principles was violated in this scenario?
Which of the following is the first step in the process of identifying relevant fraud risk factors?
The chief audit executive (CAE) is drafting the annual internal audit plan and seeks input from senior management and the external auditor prior to submitting it for approval to the board. According to MA guidance, which of the following statements is true regarding this scenario?
The board of directors of a global organization has found an increased number of reported cases of unethical practices since last year. To assist the board in gaining a better understanding of the degree of ethics awareness within the organization, which of the following actions should be undertaken?
In which of the following audits would the internal auditors most likely contribute to the assessment of organizational governance?
To comply with the proficiency standard which of the following would the chief audit executive likely consider as the primary hiring criterion when choosing a new internal auditor?
An experienced internal auditor is planning an assurance engagement of the organization ' s sales activities. During process walkthroughs and interviews, many sales representatives expressed concerns about management ' s escalating demands to meet the organization ' s sales goals. According to the MA guidance, which of the following is the best application of due professional care in planning the engagement?
Which of the following is a control that is used mainly to check the integrity of data entered into a business application, whether the data is entered directly by staff, remotely by a business partner, or through a web-enabled application?
Which of the following best describes a purpose for the internal audit charter?
An internal auditor was completely honest with operational management when delivering unfavorable audit results. Which of the following best describes the IIA Code of Ethics principle that the auditor demonstrated?
Operational management in the IT department has developed key performance indicator reports, which are reviewed in detail during monthly staff meetings. This activity is designed to prevent which of the following conditions?
Regarding the chief audit executive (CAE). which ot the following is considered an impairment to the independence of the internal audit activity?
An internal auditor wants to compare her organization’s governance processes to those of a well-known governance model. Which of the following approaches would the auditor take for this purpose?
Which of the following best demonstrates that the internal audit activity is using due professional care?
Which of the following scenarios would most significantly restrict the areas where internal audit could perform assurance services?
A newly appointed chief audit executive (CAE) started analyzing the organization ' s policies in an attempt to customize them to address internal audit specifics. Which of the following organizationwide practices is most likely to be acceptable to the CAE?
Which of the following describes a responsibility of operating management in an organization ' s corporate social responsibility (CSR) efforts?
During a review of the procurement function, an internal auditor identified an existing control for adding new vendors into the vendor contract system. Which of the following would best help the auditor determine the adequacy of the control ' s design?
Which of the following situations presents the lowest risk of impairing an internal audit activity ' s independence?
An organization sells products through distributors. The organization ' s chief audit executive insists that the organization ' s code of conduct be applicable to their distributors as well. Which of the following risks would this mitigate?
In its five years of existence, an internal audit activity conducted a single internal assessment of its quality assurance and improvement program (QAIP). The results of that assessment showed that the internal audit activity did not conform with the Standards. Prior to this, an external assessment of the internal audit activity ' s QAIP was conducted, which reported that the internal audit activity was in conformance with the Standards. Considering the two assessments, what would be the internal audit activity ' s current state of conformance with the Standards?
A subsidiary of the organization was preparing for an initial public offering (IPO). Af the request of the audit committee, the chief audit executive (CAE) and all senior audit staff were actively involved in the process by helping collect and validate financial data, conducting assessments, and participating in meetings with IPO advisors. Six months later, it became obvious that the IPO had to be canceled. Newly appointed audit committee members requested an assurance engagement that v/ould assess the IPO preparation process. Which of the following would be the best course of action for the chief audit executive (CAE) to take?
Upon joining the internal audit activity, each new auditor receives a copy of the audit handbook. Which of the following handbook policies has the greatest risk of compromising audit objectivity?
Which of the following statements best represents the due professional care that is required of internal auditors?
The management at a national consumer goods organization implements a fair work and pay practice as well as a policy to treat employees equitably and consistently.
Which common characteristics of fraud will the practice and policy most likely reduce?
An organization opened its warehouse to sell written-off surplus and outdated office furniture to the general public. Prices were negotiable, and customers could pay by cash, check, or credit card. Receipts were available upon request, and were issued by the inventory manager upon collection of payment. At the end of the day, the manager forwarded all of the funds he had collected to the finance department for deposit. Which of the following types of fraud is most likely to occur under these circumstances?
Which of the following principles of The IIA ' s Code of Ethics implies that internal auditors should refrain from performing assurance services when there is an impairment to audit independence that has not been declared?
An internal audit team analyzed the organization ' s value-at-risk model during an assurance engagement and suggested several useful improvements. Management was impressed by the internal audit team’s work and requested additional actions. Which of the following requested actions would impact internal audit independence most severely if fulfilled?
Which of the following most accurately describes the role of the board when it comes to organizational governance?
Which of the following drivers of fraud is directly controllable by an organization?
According to IIA guidance, which of the following actions by the chief audit executive (CAE) best demonstrates the organizational independence of the internal audit activity?
Which of the following best demonstrates the application of due professional care?
According to IIA guidance, which of the following activities is appropriate for an internal auditor to perform with regard to the organization ' s corporate social responsibility (CSR) program?
1. Determine whether the organization has adequate controls to achieve its CSR objectives.
2. Facilitate a management self-assessment of CSR controls and results.
3. Consult on the project design and implementation for the CSR program.
4. Exclude CSR-related external risks that are beyond the control of the organization.
According to HA guidance, if an internal auditor suspects fraud during an assurance engagement, what should the auditor do first?
To assure that the technical proficiency of internal auditors is appropriate for the audit engagements to be performed, a chief audit executive should:
The organization ' s chief audit executive (CAE) is planning an immediate assurance engagement following several product recalls. However, the internal audit staff does not have the required Knowledge and experience to adequately assess all the relevant processes and procedures. According to 11A guidance, which of the following actions should the CAE take under these circumstances?
According to IIA guidance, which of the following statements regarding ethics is true?
Which of the following describes the most appropriate match between a potential temporary guest auditor candidate and an upcoming audit assignment?
Which of the following is the most appropriate reason for a chief audit executive to conduct an external assessment more frequently than five years?
A chief audit executive has reported to the board that the internal audit activity is lacking financial accounting knowledge for specific audit projects. Upon approval from the board which of the following hiring approaches is best in this situation?
Which of the following is the internal audit activity expected to do with respect to the organization ' s governance processes?
Which of the following describes the internal audit activity ' s most appropriate role in an organization ' s risk management process?
Which of the following skills is critical for assessing corporate social responsibility through a self-assessment?
Which of the following would most likely represent an objectivity impairment for an internal auditor?
Which of the following best describes a consulting engagement rather than an assurance engagement?
IT management requires all employees in the IT department to attend annual training on the department ' s mission, values, and key performance measures. This activity is designed to prevent which of the following conditions?
Which of the following would be a preventive control for helping to manage fraud in an organization?
At the beginning of an IT development project, key risks were identified and assessed, and risk owners were appointed. Six months later, the IT development team reported that the project is significantly over budget, it will not be completed on time, and key personnel had left the organization. Which of the following risk management practices should be improved for future projects?
Prior to commencing a financial compliance engagement, the engagement supervisor reads the business plan for the finance department and meets informally with the director to learn more about any key issues. Which of the following competencies is the engagement supervisor demonstrating?
Which of the following activities should the chief audit executive perform to ensure compliance with an organization ' s code of conduct?
Which of the following would be considered a violation of The HAfs mandatory guidance on independence?
Internal audit is performing an engagement to determine whether there were indications of questionable bidding on a city s infrastructure project. As part of the engagement the internal audit activity became aware that certain firms tend to receive the contracts for large city projects. How should the internal audit activity proceed with the engagement and identify questionable bidding practices?
An internal auditor at a multinational organization is reviewing the effectiveness of the organization ' s risk management framework. In this scenario, which of the following statements is true?
After the draft engagement report is issued, the manager of the area that was reviewed is informally interviewed by the engagement supervisor regarding the audit experience. Which of the following is most likely the purpose for this interview?
According to IIA guidance, which of the following statements is true regarding ISO 31000?
If the skills and competencies are not present within the internal audit activity to complete an ad-hoc assurance engagement, which of the following is an acceptable
resolution?
Which of the following best describes why a chief audit executive might obtain the services of a fraud specialist to assist in a major fraud investigation?
With regard to the internal audit activity ' s quality assurance and improvement program, which of the following topics would the chief audit executive include on the quarterly board meeting agenda?
In which of the following scenarios would the chief audit executive (CAE) be required to decline the assignment?
Wi ch of the following circumstances would most likely be considered a potential red flag for fraud by the internal audit activity?
The accounting department asked the chief audit executive (CAE) to perform a review of suspicious transactions The CAE was an accounting manager for the organization six months ago How should she respond to the request?
Which of the following indicates that internal audit independence may be compromised?
A chief audit executive (CAE) recruited a few new internal auditors to reduce the resource gaps identified in this year ' s internal audit plan. One of the new recruits has several years of experience with the organization. Ten months ago. she served as a senior supervisor in the finance department. However, for the past 10 months, she has been helping the organization with implementing a new IT system. What approach should the CAE take for the upcoming financial statement controls audit?
An internal audit activity is taking steps to promote professional development among the staff, and is in the process of implementing a mentorship program. According to HA guidance, which of the following is important for a successful mentorship program?
Which of the following best demonstrates that an internal auditor is applying due professional care when planning an assurance engagement?
Which of the following would be most helpful to measure whether an internal audit activity successfully provides risk-based assurance?
Which of the following is most important for an internal auditor to consider when developing an approach for an audit engagement in a foreign country?
Which of the following practices is generally most effective to protect internal audit objectivity?
An internal auditor is assessing the effectiveness of the organization ' s risk management practices. She checks to see whether risk management is an integral part of decision making and whether risk management is transparent, responsive to change, and addresses uncertainty. According to IIA guidance on risk management frameworks, which of the following approaches is the auditor most likely using?
Which of the following is an indicator that the internal audit activity does not fully conform with the Standards?
Which of the following actions should the internal audit activity take during an audit engagement when examining the effectiveness of risk management processes?
Which of the following statements about internal audit consulting engagements is true?
Which of the following statements best describes a functional difference between external auditors and internal auditors?
Which of the following best describes the risk contained in an initial public offering for a new stock?
In an assurance engagement focused on the adequacy of organizationwide risk management practices, which of the following best describes a primary area of interest for the engagement?
A new internal audit activity is considering the adoption of a risk and control framework. Which of the following is the most appropriate consideration during this process?
An organization allows the same individuals to physical access inventory and purchase new assets when supplies are depleted. Which of the following would best help the organization manage the risk of fraud?
Which of the following situations undermines the independence of the internal audit activity?
An internal auditor is performing testing to gather evidence regarding an organization’s inventory account balance and is mindful of the possibility that the sample used might support the conclusion that the recorded account balance is not materially misstated when, in fact, it is. The auditor ' s concern best describes which of the following risks?
Which of the following best demonstrates conformance with IIA standards related to continuing professional development?
A chief audit executive ensures that the internal audit activity provides annual training to management on internal controls. Where is the nature of these services defined?
Which of the following is most likely to result in the impairment of independence for the internal audit activity?
Senior management relies on the professional judgment of an internal auditor and uses outcomes of her audit work to make business decisions Which of the following personal qualities displayed by the internal auditor is most likely the foundation for this relationship?
According to IIA guidance which of the following statements is true regarding the internal audit charier?
Which of the following organizations is adopting an acceptance technique in terms of its risk response?
Which of the following would decrease or be reduced if an organization establishes and implements excessive internal controls?
Which of the following strategies for professional development best demonstrates an internal auditor’s competency ' ?
Which of the following statements is true regarding the internal audit activity ' s quality assurance and improvement program (QAIP)?
Which principle of the HA Code of Ethics focuses on continuing education and professional development?
A fraud investigation was completed by management, and a proven fraud was communicated to relevant authorities. According to IIA guidance, which of the following roles would be most appropriate for the internal audit activity to undertake after the investigation?
An accounts payable clerk has recently transferred Into the internal audit activity and has been assigned to an engagement related to accounts payable processes for which he was previously responsible Which of the following is the best action for the new internal auditor to take?
Which of the following is a limitation of detective internal controls in fraud management?
During a monthly internal audit staff meeting, the chief audit executive (CAE) decided to reinforce the importance of internal audit staff being objective in their work. Which of the following examples would be most appropriate for the CAE to include as part of the meeting presentation?
An audit client who was unsatisfied with the audit report rating called the chief audit executive (CAE) and complained that the internal auditor who performed the audit was biased because his spouse, who worked in the area under review, was on a list of employees to be terminated. Which of the following measures would be most appropriate to prevent this situation from arising?
Which of the following situations is most likely to heighten an internal auditor ' s professional skepticism regarding potential fraud?
According to IIA guidance, which of the following is accurate regarding the chief audit executive ' s (CAE ' s) requirement to report the results of quality assessments?
1. The CAE must report the results of external assessments at least annually.
2. The CAE must report the results of ongoing monitoring at least annually.
3. The CAE must report the results of quality assessments to senior management.
4. The CAE must report the results of quality assessments to the board.
In which of the following ways could stakeholders be engaged in corporate social responsibility efforts?
A chief audit executive (CAE) is considering hiring a candidate who most recently worked for a large public accounting firm What would be the CAE’s most likely concern regarding this candidate*?
What is the primary reason a chief audit executive should dedicate time and resources to support continuing professional development of internal audit staff?
An organization employs ongoing monitoring and is considering implementing periodic evaluations to assess the continuing effectiveness of its risk management process. Which of the following statements Is true with regard to such periodic evaluations?
Which of the following statements is the most appropriate example of the internal audit activity exercising due professional care during an audit of the payroll department?
The board requested the chief audit executive (CAE) to provide consulting services for a new systems implementation project Which of the following statements is true regarding this scenario?
The internal audit activity was asked to conduct an investigation for potential fraud in the treasury department and subsequently contracted with a forensic accountant to join the team for the engagement. Which of the following parties has the primary responsibility for resolving any fraud incidents found as a result of this investigation?
Which of the following is an example of risk monitoring to ensure a system is performing as intended?
An internal auditor believes that a weakness exists in the control environment relating to the delegation of authority and responsibility within the management structure. Which of the following actions should the internal auditor first consider in this matter?
Which of the following requests, if accepted by the internal audit activity, would impair its independence?
According to IIA guidance, which of the following is necessary for internal auditors to comply with the requirements for proficiency?
1. Sufficient consideration of current activities, trends, and emerging issues to effectively carry out their professional responsibilities.
2. Ability to provide relevant advice and recommendations to management and the board.
3. Understanding of key IT risks and controls and the ability to identify fraud using technology-based audit techniques.
4. Knowledge, skills, and other competencies necessary to perform individual responsibilities during the engagement.
The chief audit executive (CAE) of a large organization has been asked by the board to assume responsibility for risk management and compliance operations, both of which are distinct departments within the organization and are subject to periodic audits by the internal audit activity In regards to future audits of these functions which of the following approaches would be most appropriate?
What is an appropriate first step in an internal auditor’s fraud risk assessment to evaluate how the organization manages such risk?
Which of the following activities would an internal auditor perform as a consulting engagement for an organization?
Which of the following actions would best help the internal audit activity promote continuous improvement in control effectiveness within the organization?
According to IIA guidance, which of the following statements is true regarding risk management in an organization?
Which of the following is a consulting service the internal audit activity can perform with respect to the organization ' s risk management?
Which of the following procedures will best help an internal auditor assess operating effectiveness of fraud prevention and detection controls?
According to IIA guidance, which of the following statements is true regarding consulting engagements performed by the internal audit activity?
Which documents would help a forensic auditor identify instances of collusion between an employee and vendor to defraud the organization?
Which of the following best demonstrates organizational independence of the internal audit activity?
Which of the following would a chief audit executive most likely use to identify a need for improvement in a staff internal auditor ' s business acumen?
An internal auditor extended the scope of testing for a disbursements engagement following a fraud risk assessment Despite the investment of additional audit resources no significant issues were found Unfortunately a major payment fraud was discovered several
months later According to IIA guidance which of the following statements is true regarding the internal auditor ' s application of due professional care?
Which of the following approaches will internal audit utilize when developing a set of performance standards to measure an organization’s risk management process against?
Which of the following scenarios best illustrates a rationalization as the root cause of potential fraud?
Which of the following statements is true regarding organizational independence of the internal audit activity (IAA)?
During the closing meeting of a procurement audit, the business manager disagrees with the observation presented by the engagement supervisor and accuses the team of not understanding the procurement objectives The engagement supervisor blames the manager for impeding the audit What skillset should the chief audit executive utilize to manage this situation?
To encourage internal audit objectivity, which of the following is an appropriate policy the chief audit executive should establish?
To comply with the proficiency standard, which of the following would the chief audit executive likely consider as the primary hiring criterion when choosing a new internal auditor?
Which of the following best demonstrates internal auditors performing their work with proficiency?
Which of the following documents are internal auditors most likely to be asked to sign as a demonstration of due professional care?
A description of their job responsibilities,
According to IIA guidance, which of the following is true of the internal audit activity’s quality assurance and improvement program?
1 Monitoring the internal audit activity’s performance must be ongoing
2 All aspects of the internal audit activity should be evaluated
3 The requirement for external assessments can be satisfied through self-assessments that are validated by an independent external party
4 The review of assurance services should be the primary focus
Which of the following options describes the reason that conformance with The IIA ' s Code of Ethics is mandatory for internal auditors?
During fieldwork, an internal auditor located a significant internal control issue. Without identifying the origins of the issue, the auditor concluded the engagement and included the issue in the final audit report. To enhance audit quality, which of the following skills should the internal auditor improve?
Which of the following Code of Ethics principles specifically requires internal auditors to disclose all material facts known to them that, if not disclosed, may distort the reporting of activities under review?
The internal audit activity is responsible for which of the following actions related to an organization’s internal controls?
According to IIA guidance, which of the following statements is true regarding the internal audit activity ' s quality assurance and improvement program (QAIP)?
In which of the following situations may the internal audit activity report conformance with the Standards?
Which of the following resources would be most effective for an organization that would like to improve how it informs stakeholders of its social responsibility performance?
A manufacturer of power tools is experiencing regular fluctuations in the price of electrical power which is having a serious impact on the bottom line. Which of the following would be the most effective risk strategy to reduce the impact of these fluctuations?
During a procurement process audit the internal audit activity undertakes a fraud risk assessment and considers a range of possible fraud scenarios within the process. Which of the following scenarios constitutes a pressure to commit fraud?
Which of the following needs to be established prior to undertaking an assessment of the quality assurance and improvement program?
An internal auditor has documented several instances in which management asked employees to ad against the policies and procedures. Which of the following is the most appropriate next step?
During an audit of company expenses, the internal auditor performed a test using data analytics and identified a violation of the company ' s expenses policy. The auditor who discovered the issue considered it a potential fraudulent transaction and informed the chief financial officer (CFO). The CFO dismissed the concern because he did not understand the data analytics test that was performed and the transaction was of a low value. Given this situation, which skills or competencies should this internal auditor seek to improve?
Which of the following scenarios would cause a chief audit executive (CAE) to immediately discontinue using any statements that would indicate conformance with the Standards in an audit report?
Management has implemented a segregation-of-duties policy for handling inventory. Which of the following fraud risks would be more concerning to an internal auditor following the implementation of this new policy?
Upon completion of an external quality assessment, which of the following would the chief audit executive be required to report to the board?
According to the IIA Code of Ethics, which of the following best describes the conduct of an internal auditor who demonstrates the principle of competency?
Which of the following statements is true regarding organizational culture and an audit of the control environment?
A series of incidents over the past year reveals several members of senior management possess a limited understanding of the concept and impact of fraud. Which of the following would be the most effective way to approach this issue?
Which of the followIng would permit an internal audit activity to use the statement " conducted m conformance with the International Standards for the Professional Practice of Internal Auditing m audit reports?
Which of the following statements would typically be included in the responsibility section of the internal audit charter?
Which of the following best describes why a chief audit executive might obtain the services of a fraud specialist to assist in a major fraud investigation ' ?
Nearing the completion of fieldwork, an internal auditor shared the draft report findings with management prior to the closing meeting. During the closing meeting, management expressed dissatisfaction in that they were not familiar with some of the findings. Management also noted that some aspects of the report seemed confusing. Which of the following competencies appears to have been lacking in this scenario?
During an assurance engagement the internal audit team discovers that employees performing a control do not understand the principles behind it. Before the engagement concludes, at management ' s request the audit team facilitates several formal training sessions to help explain those principles to the employees. Which of the following best describes the engagement provided by the internal audit activity in this scenario?
Which of the following best demonstrates the authority of the internal audit activity?
The results of an assessment of the adequacy of controls would be considered incomplete or misleading unless the internal auditor considers which of the following?
An internal auditor believes that a weakness exists in the control environment relating to the delegation of authority and responsibility within the management structure. Which of the following actions should the internal auditor first consider in this matter?
Which of the following statements best represents the duo professional care that is required of internal auditor’s?
The chief audit executive (CAE) of a new internal audit activity is creating an internal audit charter According to IIA guidance, which of the following terms is most likely to
be included in the charter?
A significant number of employees expressed concerns of a hostile work environment within a large manufacturing plant, which is in contrast to the organization ' s stated culture of tolerance and open communication. Which of the following approaches would be most effective for an internal auditor to assess whether the organization supports a culture of tolerance and open communication?
Which of the following should the internal audit activity establish to ensure auditors develop the appropriate skills for conducting audits?
According to IIA guidance, an internal audit charter should detail which of the following?
When performing an audit of the risk management process an auditor makes the observations listed below. Which poses the greatest risk to the organization?
According to The IIA’s Code of Ethics, which of the following statements is true?
Which of the following best describes the risk created when a manager bypasses organizational policies and procedures in order to meet an organization’s objective?
Which of the following documents would promote objectivity within an organization ' s internal audit activity?
According to IIA guidance, which of the following would be included in an internal audit charter to help establish the authority of the internal audit activity?
While preparing the audit plan for an automobile manufacturing company, the chief audit executive (CAE) noted that the company ' s engineering department received a high risk ranking. However, the internal audit activity is understaffed, and current staff do not possess the necessary skills to adequately assess the effectiveness of the engineering department. What is the most appropriate course of action for the CAE to take?
According to IIA guidance, which of the following conditions would enhance the independence of the internal audit activity?
A technology company recently hired an entry-level internal auditor. To achieve conformance with the Standards, which of the following must the newly hired internal auditor possess?
According to NA guidance, which of the following provides the best evidence of conformance with the Standards with respect to the proficiency required of the internal audit activity?
Which of the following would be considered a primary control to reduce the risk associated with setting up duplicate vendors?
IT management requires all employees in the IT department to attend annual training on the department’s mission values and key performance measures This activity is designed to prevent which of the following conditions?
An internal auditor believes that the internal audit activity ' s independence is impaired. Which of the following actions should the internal auditor take first?
Which of the following statements is true with regard to services provided by the internal audit activity?
An internal auditor has suspicions that some fictitious vendors have been created in the organization ' s computer system. Which of the following would be the best technique to detect this fraud?
Which of the following is an example of the chief audit executive (CAE) demonstrating due professional care?
An internal auditor creates a professional development plan to obtain more experience in the organization ' s environmental, social, and corporate governance initiatives. Which of the following would the auditor include in the plan to support these objectives?
When the chief audit executive Is responsible for risk management in an organization, which of the following parties is responsible for overseeing the internal audit activity ' s assurance over risk management?
Which of the following is the best way for an internal auditor to demonstrate due professional care?
Which of the following tests would most likely help discover a fictitious invoice?
Which of the following is the primary engagement responsibility of an entry-level internal auditor?
Which of the following represents an example of an ethical issue that the organization should address ' ?
According to IIA guidance, which of the following training methods is considered most effective in assisting new entry-level internal auditors in achieving competence with internal audit practices in the workplace?
Which of the following is an indicator that an organization ' s risk management processes are effective?
An internal auditor discovered that a former colleague from the internal audit activity now works in a junior position in a department scheduled for an upcoming audit. How can the auditor best ensure his objectivity for this engagement?
Which of the following fraud prevention measures is most likely to trigger undesired adverse behavior if improperly designed?
According to IIA guidance, which of the following is the primary reason the chief audit executive discusses the internal audit charter with senior management and the board?
A senior executive at a government-owned organization received an invitation to attend a public exhibition where he can learn about new trucks relevant to the organization ' s business. As a special perk, the executive is offered an opportunity to drive a luxury vehicle manufactured by one of the exhibiting companies. Prior to the event, the executive asked for the chief audit executive s (CAE’s) advice. What should the CAE recommend as the most appropriate course of action for the executive?
An organization ' s operations management is aware of existing internal control deficiencies but they lack the competency to execute internal control measures. Which of the following actions if taken by the internal audit activity is appropriate to assist operating management in achieving continuous improvement on internal controls?
A financial services organization ' s board is assessing increased regulations and its effect on current industry lending practices. Which of the following committees would help the board identify and assess the effects of the increased regulations?
Management decided to post the organization ' s newly established code of conduct on its website. This decision is primarily intended to mitigate which of the following risks?
According to IIA guidance, which of the following is most critical to ensuring that an organization ' s risk management program remains effective over time?
An existing Internal audit charter is currently under review for revision. Who is responsible for assuring that all required components are included?
Which of the following is a true statement regarding controls such as ethical values, tone at the top and operational style?
Which of the following activities would breach the principles of The IIA ' s Code of Ethics?
Which of the following best describes the Standards requirement for collective proficiency of the internal audit activity?
The accounting department asked the chief audit executive (CAE) to perform a review of suspicious transactions. The CAE was an accounting manager for the organization six months ago.
How should she respond to the request?
According to IIA guidance, which of the following activities would typically be examined when using the maturity model approach for assessing an organization ' s risk management program?
The organization ' s internal audit charter was last updated six years ago. To update the charter, which of the following actions is most appropriate for the chief audit executive to take?
Which of the following describes a primary responsibility for the internal audit activity in helping management maintain effective controls?
According to IIA guidance, which of the following is an appropriate role for the internal audit activity?
During an audit of a foreign subsidiary an internal audit team discovered that products were sold to a prohibited country due to sanctions. What is the best course of action for the internal audit team?
Which of the following scenarios is a characterize of an organization with a highly effective ethical culture?
Which of the following actions by the internal audit activity requires disclosure to the board of nonconformance with the Standards?
According to IIA guidance, which of the following best describes the chief audit executive s responsibility for confirming to the board the organizational independence of the internal audit activity ' ?
Under which of the following circumstances should the final audit report include a disclosure of nonconformance with the Standards?