Free Access IIA.IIA-CIA-Part2.v2022-09-28.q589 Practice Test (Page 53)

Question 256

In a health care organization the internal audit activity provides overall assurance on governance, risk and control The chief audit executive advises and influences senior management, and the audit strategy leverages the organization's management of risk According to HA guidance which of the following stages of internal audit maturity best describes this organization?

A.Emerging.

B.Managed.

C.Infrastructure.

D.Initial.

Question 257

During an audit, an employee, who does not want to be identified, offers to provide information that would be damaging to the organization and may concern illegal activities. Which of the following actions by the auditor would not be consistent with the IIA Code of Ethics and Standards?

A.Promising to maintain the employee's anonymity and listening to the information.

B.Suggesting that the employee consider talking to legal counsel.

C.Informing the employee that an attempt will be made to keep the source of the information confidential while looking into the matter further.

D.Informing the employee of other methods of communicating this type of information.

Question 258

Which of the following is an advantage of control self-assessment (CSA) over conventional auditing techniques?

A.CSA evaluates control activities and human resource practices.

B.CSA provides assurance about whether business objectives will be met.

C.CSA facilitates obtaining input from subject-matter experts efficiently.

D.CSA provides assurance that action will be taken to improve deficiencies.

Question 259

A bank uses a risk analysis matrix to quantify the relative risk of auditable entities. The analysis involves rating auditable entities on risk factors using a scale of 1 to 10, with 10 representing the greatest risk. A partial list of risk factors and the ratings given to three of the bank's departments is provided below:

Which of the following statements regarding risk in the department is true?

A.As compared to departments A and C, department B has a stronger control system to compensate for the greater complexity of the department's transactions and dollar value of its assets.

B.The internal audit activity should schedule audits of department B more often than audits of department C because of the relative control strength of department C as compared to department B.

C.The nature of department A's control structure may be justified by the nature of the department's assets and the complexity of its transactions.

D.The relative ranking of the departments in order of their risk, from greatest to least risk, is: A; C; B.

Question 260

A chief audit executive is preparing interview questions for the upcoming recruitment of a senior internal auditor. According to IIA guidance, which of the following attributes shows a candidate's ability to probe further when reviewing incidents that have the appearance of misbehavior?

A.Flexibility.

B.Curiosity.

C.Initiative.

D.Integrity.

Other Version: 1730IIA.IIA-CIA-Part2.v2024-12-09.q342; 7775IIA.IIA-CIA-Part2.v2023-05-26.q379; 7872IIA.IIA-CIA-Part2.v2023-04-08.q383; 3172IIA.IIA-CIA-Part2.v2023-03-09.q121; 13026IIA.IIA-CIA-Part2.v2022-07-26.q511; 9273IIA.IIA-CIA-Part2.v2022-01-22.q283; 108IIA.Prepawaypdf.IIA-CIA-Part2.v2021-10-22.by.nat.555q.pdf

Latest Upload: 107Oracle.1z0-1196-25.v2025-09-12.q18; 106NetworkAppliance.NS0-162.v2025-09-12.q86; 146OCEG.GRCP.v2025-09-11.q211; 107HP.HPE0-V27.v2025-09-11.q78; 123Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 137SAP.C-S4EWM-2023.v2025-09-08.q83; 182TheSecOpsGroup.CNSP.v2025-09-08.q20; 262CFAInstitute.ESG-Investing.v2025-09-08.q173; 250PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 256

Question 257

Question 258

Question 259

Question 260

Download PDF File