IIA IIA-CIA-Part3 Dumps

Firewall.

Encryption.

Antivirus.

Biometrics.

Scope change requests are reviewed and approved by a manager with a proper level of authority.

Cost overruns are reviewed and approved by a control committee led by the project manager.

There is a formal quality assurance process to review scope change requests before they are implemented

There is a formal process to monitor the status of the project and compare it to the cost baseline

Cost of goods sold will be understated and net income will be overstated.

Cost of goods sold will be overstated and net income will be understated

Cost of goods sold will be understated and there Wi-Fi be no impact on net income.

There will be no impact on cost of goods sold and net income will be overstated

Direct materials, indirect materials, raw materials.

Overhead costs, direct labor, direct materials.

Direct materials, direct labor, depreciation on factory buildings.

Raw materials, factory employees' wages, production selling expenses.

Creating a comprehensive reporting system for vendors to demonstrate their ongoing due diligence in network operations.

Drafting a strong contract that requires regular vendor control reports end a right-to-audit clause.

Applying administrative privileges to ensure right to access controls are appropriate.

Creating a standing cyber-security committee to identify and manage risks related to data security

Frozen site

Cold site

Warm site

Hot site

Revenues should be recognized when earned.

Revenue recognition is matched with cash.

Expense recognition is tied to revenue recognition.

Expenses are recognized at each accounting period.

Numerous and consistent attacks on the company's website caused the server to crash and service was disrupted.

A person posing as a representative of the company’s IT help desk called several employees and played a generic prerecorded message requesting password data.

A person received a personalized email regarding a golf membership renewal, and he click a hyperlink to enter his credit card data into a fake website

Many users of a social network service received fake notifications of e unique opportunity to invest in a new product.

A balanced scorecard.

A quality audit

Earned value analysis.

Trend analysis

Relationship with supervisor

Salary

Security.

Achievement

Lawfulness.

Consideration.

Agreement.

Discharge

1 and 3 only

1 and 4 only

2 and 3 only

3 and 4 only

On site.

Cold site.

Hot site.

Warm site

Assessments of third parties and suppliers.

Recruitment and retention of certified IT talent.

Classification of data and design of access privileges.

Creation and maintenance of secure network and device configuration.

A traditional key lock

A biometric device

A card-key system

A proximity device

Draft separate audit reports for business and IT management.

Conned IT audit findings to business issues.

Include technical details to support IT issues.

Include an opinion on financial reporting accuracy and completeness.

Increased dependence on suppliers.

Increased importance of market strategy.

Decreased sensitivity to government regulation

Decreased focus on costs

$20,000,000

$24.500.000

$30.000.000

$35.200.000

Estimate time required to complete the whole project.

Determine the responses to expected project risks.

Break the project into manageable components.

Identify resources needed to complete the project

Limit the use of the employee devices for personal use to mitigate the risk of exposure to organizational data.

Ensure that relevant access to key applications is strictly controlled through an approval and review process.

Institute detection and authentication controls for all devices used for network connectivity and data storage.

Use management software scan and then prompt parch reminders when devices connect to the network

A debit to office supplies on hand for S2.500

A debit to office supplies on hand for $11.500

A debit to office supplies on hand for $20,500

A debit to office supplies on hand for $42,500

Functional departmentalization.

Product departmentalization

Matrix organization.

Divisional organization

Cash payback technique.

Discounted cash flow technique: net present value.

Annual rate of return

Discounted cash flow technique: internal rate of return.

Incremental processing costs, incremental revenue, and variable manufacturing expenses.

Joint costs, incremental processing costs, and variable manufacturing expenses.

Incremental revenue, joint costs, and incremental processing costs.

Variable manufacturing expenses, incremental revenue, and joint costs

A warm recovery plan.

A cold recovery plan.

A hot recovery plan.

A manual work processes plan

1 and 2

1 and 4

3 and A

2 and 3

Applications

Technical infrastructure.

External connections.

IT management

Restricting server room access to specific individuals

Housing servers with sensitive software away from environmental hazards

Ensuring that all user requirements are documented

Performing of intrusion testing on a regular basis

Internal auditors perform reconciliation procedures to support an external audit of financial reporting.

Internal auditors perform a systems-focused analysis to review relevant controls.

Internal auditors perform a risk assessment to identify potential audit subjects as input for the annual internal audit plan

Internal auditors test IT general controls with regard to operating effectiveness versus design

Analyze Invoice payments just under individual authorization limits.

Analyze stratification of inventory adjustments by warehouse location.

Analyze inventory invoice amounts and compare with approved contract amounts.

Analyze differences discovered during duplicate payment testing

A flat structure results in lower operating and support costs than a hierarchical structure.

A flat structure results in a stable and very collaborative environment.

A flat structure enables field auditors to report to and learn from senior auditors.

A flat structure is more dynamic and offers more opportunities for advancement than a hierarchical structure.

Lack of coordination among different business units

Operational decisions are inconsistent with organizational goals

Suboptimal decision making

Duplication of business activities

Real-time processing of transactions and elimination of data redundancies.

Fewer data processing errors and more efficient data exchange with trading partners.

Exploitation of opportunities and mitigation of risks associated with e-business.

Integration of business processes into multiple operating environments and databases.

Cost method.

Equity method .

Consolidation method.

Fair value method.

Identification of achievable goals and timelines

Analysis of the competitive environment.

Plan for the procurement of resources

Plan for progress reporting and oversight.

Greater cost-effectiveness

Increased economies of scale

Larger talent pool

Strong internal controls

Monitoring network traffic.

Using whitelists and blacklists to manage network traffic.

Restricting access and blocking unauthorized access to the network

Educating employees throughout the company to recognize phishing attacks.

Authentication logs.

Card key readers.

Biometric devices

Video surveillance.

The board should be fully satisfied that there is an effective system of governance in place through accurate, quality information provided.

Compliance, audit, and risk management can find and seek efficiencies between their functions through integrated information reporting.

Key compliance and risk metrics can be tracked and compared throughout the enterprise, aiding in identifying problem departments.

Data analytics can be utilized for trending of the data to ensure that patterns and ongoing monitoring occurs throughout the organization.

Cash payback technique

Annual rate of return technique.

Internal rate of return method.

Net present value method.

Only preventive measures.

Alternative and reactive measures.

Preventive and alternative measures.

Preventive and reactive measures.

It is a process of allocating cost of assets between periods.

It is a process of assets valuation.

It is a process of accumulating adequate funds to replace assets.

It is a process of measuring decline in the value of assets because of obsolescence

Providing fire detection and suppression equipment

Establishing a physical security policy and promoting it throughout the organization

Performing business continuity and disaster recovery planning

Keeping an offsite backup of the organization's critical data

An offboarding procedure is initiated monthly to determine redundant physical access rights.

Logs generated by smart locks are automatically scanned to identify anomalies in access patterns.

Requests for additional access rights are sent for approval and validation by direct supervisors.

Automatic notifications are sent to a central security unit when employees enter the premises during nonwork hours

Operating system

Control environment

Network.

Application program code

Management must ensure information storage systems are appropriately defined and processes to update critical data elements are clear.

External auditors must ensure that analytical models are periodically monitored and maintained.

The board must implement controls around data quality dimensions to ensure that they are effective.

Internal auditors must ensure the quality and security of data, with a heightened focus on the riskiest data elements.

It explains the assumption mat both costs and revenues are linear through the relevant range

It enables management to calculate a minimum number of units to produce and sell without having to incur a loss.

It enables management to predict how costs such as the depreciation of equipment will be affected by a change in business decisions

It enables management to make business decisions, as it explains the cost that will be incurred for a given course of action

Encrypted data cannot be locked to prevent further access

Default settings cannot be restored on the device.

All data, cannot be completely removed from the device

Mobile device management software is required for successful remote wipe

Key performance indicators.

Reports of software customization.

Change and patch management.

Master data management

Identity requests are approved in two steps.

Logs are checked for misaligned identities and access rights.

Users have to validate their identity with a smart card.

Functions can toe performed based on access rights

Using a jailbroken or rooted smart device feature.

Using only smart devices previously approved by the organization.

Obtaining written assurance from the employee that security policies and procedures are followed.

Introducing a security question known only by the employee.