Free Access IIA.IIA-CIA-Part2.v2023-05-26.q379 Practice Test (Page 55)

Question 266

When interrogating an individual who is suspected of fraud, it is appropriate to:

A.Tell the individual that any information disclosed in the interrogation will not be disclosed outside of the company.

B.Prepare a list of questions prior to the interrogation and strictly adhere to the list.

C.Start the interview with questions to which the interviewer already knows the answer.

D.Discontinue questioning once the individual has confessed to the fraud.

Question 267

An organization does not have a formal risk management function. According to the Standards, which of the following are conditions where the internal audit activity (IAA) may provide risk management consulting?
1. There is a clear strategy and timeline to migrate risk management responsibility back to management.
2. The IAA has the final approval on any risk management decisions.
3. The IAA does not give objective assurance on any part of the risk management framework for which it is responsible.
4. The nature of services provided to the organization is documented in the internal audit charter.

A.1, 2, and 3 only

B.1, 2, and 4 only

C.1, 3, and 4 only

D.2, 3, and 4 only

Question 268

Which of the following would be the least important reason for a company to merge with another company?

A.To increase stock prices.

B.As a response to new government policy.

C.To reduce labor costs.

D.To diversify risk.

Question 269

An internal auditor is assigned to conduct an audit of security for a local area network (LAN) in the finance department of the organization. Investment decisions, including the use of hedging strategies and financial derivatives, use data and financial models which run on the LAN. The LAN is also used to download data from the mainframe to assist in decisions. Which of the following should be considered outside the scope of this security audit engagement?

A.Investigation of the physical security over access to the components of the LAN.

B.The ability of the LAN application to identify data items at the field or record level and implement user access security at that level.

C.Interviews with users to determine their assessment of the level of security in the system and the vulnerability of the system to compromise.

D.The level of security of other LANs in the company which also utilize sensitive data.

Question 270

The audit manager asked the internal auditor to perform additional testing because several irregularities were found in the financial information. Which of the following would be the most appropriate analytical review for the auditor to perform?

A.Compare the firm's financial performance with organizations in the same industry

B.Trace each financial transaction to the original supporting document

C.Perform a bank reconciliation to confirm the cash balance in the financial statements.

D.Interview all managers involved in preparing the financial statements

Other Version: 3183IIA.IIA-CIA-Part2.v2024-12-09.q342; 9200IIA.IIA-CIA-Part2.v2023-04-08.q383; 3810IIA.IIA-CIA-Part2.v2023-03-09.q121; 15009IIA.IIA-CIA-Part2.v2022-09-28.q589; 14464IIA.IIA-CIA-Part2.v2022-07-26.q511; 10002IIA.IIA-CIA-Part2.v2022-01-22.q283; 108IIA.Prepawaypdf.IIA-CIA-Part2.v2021-10-22.by.nat.555q.pdf

Latest Upload: 201PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 296Nokia.4A0-113.v2026-05-01.q69; 253EC-COUNCIL.312-49v11.v2026-04-30.q214; 228Microsoft.MB-820.v2026-04-30.q101; 209Salesforce.MC-202.v2026-04-30.q57; 204BICSI.INSTC_V8.v2026-04-29.q53; 333NMLS.MLO.v2026-04-28.q82; 242NCARB.Project-Management.v2026-04-28.q27; 458EMC.D-AV-DY-23.v2026-04-27.q184; 1112ServiceNow.CSA.v2026-04-27.q483

Question 266

Question 267

Question 268

Question 269

Question 270

Download PDF File