최신 IIA-CRMA 무료덤프 - IIA Certification in Risk Management Assurance (CRMA)

A. The number and types of people involved in the assessment, costs, and duration of the QAIP

B. The scope and frequency of internal and external assessments as well as the qualifications and independence of the assessor.

C. The scope, findings, risks, recommendations, and agreed-upon improvement actions.

D. The scope and cost of the QAIP. frequency of internal and external assessments, and conclusions of the assessor.

A. They are useful in assessing risk.

B. They do not capture all controls that may exist.

C. They require yes/no responses to specific questions, not open-ended responses.

D. They serve as a reminder of what controls should exist in a process.

A. The sample to be selected haphazardly.

B. Projecting the results to the population.

C. A smaller sample size than if selected using statistical sampling.

D. The sample to be representative of the population.

A. The internal audit charter is drafted properly and approved by the appropriate parties.

B. The mission statement and strategy of the internal audit activity demonstrates alignment to organizational objectives.

C. The chief audit executive reports both functionally and administratively to the CEO.

D. An independent third party has assessed the organization's system of internal controls to be adequate and effective.

A. Review notes of questions that arise during the review process must be retained.

B. Dating and initialing each workpaper provides evidence of review.

C. Workpaper review allows for staff training and development.

D. Workpapers may be amended during the review process.

A. Exception reports.

B. Segregation of duties.

C. Automated reconciliations.

D. Incentive compensation plans.

A. The external auditors.

B. The board.

C. The chief audit executive.

D. Senior management.

A. 3 and 4.

B. 1 and 2.

C. 1 and 3.

D. 2 and 3.

A. A risk assessment process.

B. An information and communication process.

C. A monitoring process.

D. A strategic objective-setting process.

A. The scope of internal audit activities.

B. Management and the board of directors' agreement regarding the roles and responsibilities of the internal audit activity.

C. The audit engagements to be performed during the upcoming year.

D. The internal audit activity's position within the organization.

A. 1 and 2.

B. 1 and 3.

C. 2 and 4.

D. 2 and 3.

A. The same employee who restrictively endorses checks received from customers prepares the bank's check deposit slips.

B. The same employee who receives cash from customers prepares a prelisting of cash receipts.

C. The same employee who makes deposits at the bank prepares the monthly bank reconciliation.

D. The same employee who records cash receipts in the accounts receivable subsidiary ledger ensures that the ledger automatically updates the information.

A. The practice of surprise audits and the implementation of an employee support program.

B. A veteran employee in upper management experiencing financial difficulties and recently implemented enhanced controls.

C. Hiring an employee with a prior fraud conviction and yearly management review.

D. Occasional accounting department overrides and discontinuation of the anonymous fraud hotline due to infrequent use.

A. Computerized information systems.

B. Internal audit standards, procedures, and techniques.

C. Management principles.

D. Fundamentals of accounting, economics, and finance.

A. Facilitated workshops create a synergy of discussion that can bring multiple perspectives to the same issue.

B. Internal auditors do not need other sources of information, as the data gathered during facilitated workshops is sufficient.

C. The testimonial evidence obtained during facilitated workshops is generally considered more reliable.

D. During facilitated workshops, people more openly say things to internal auditors than during private interviews.