Big 11.11 Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. IIA
  4. CIA
  5. IIA-CIA-Part2 Discussions
  6. IIA-CIA-Part2 Exam Topic 15 Question 145 Discussion

IIA Practice of Internal Auditing IIA-CIA-Part2 Question # 145 Topic 15 Discussion

 IIA Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
Next  

IIA Practice of Internal Auditing IIA-CIA-Part2 Question # 145 Topic 15 Discussion

IIA-CIA-Part2 Exam Topic 15 Question 145 Discussion:
Question #: 145
Topic #: 15

An internal auditor wants to determine whether employees are complying with the information security policy, which prohibits leaving sensitive information on employee desks overnight. The auditor checked a sample of 90 desks and found eight that contained sensitive information. How should this observation be reported, if the organization tolerates 4 percent noncompliance?
A.

The matter does not need to be reported, because the noncompliant findings fall within the acceptable tolerance limit.

B.

The deviations are within the acceptable tolerance limit, so the matter only needs to be reported to the information security manager.

C.

The incidents of noncompliance fall outside the acceptable tolerance limit and require immediate corrective action, as opposed to reporting.

D.

The incidents of noncompliance exceed the tolerance level and should be included in the final engagement report.

Get Premium IIA-CIA-Part2 Questions
Actual exam question for IIA IIA-CIA-Part2 exam by Vega53715 at Nov 13, 2025, 7:56:27 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
Next