1. Home
  2. IIA
  3. CIA
  4. IIA-CIA-Part3-3P
  5. CIA Exam Part Three: Business Knowledge for Internal Auditing Questions and Answers

Pass the IIA CIA IIA-CIA-Part3-3P Questions and answers with CertsForce

 IIA Exams      Go to Exam Detail      Get Premium Access
Viewing page 2 out of 15 pages
Viewing questions 11-20 out of questions
Questions # 11:

Which of the following professional organizations sets standards for quality and environmental audits?

Options:
A.

The Committee of Sponsoring Organizations of the Treadway Commission.

B.

The Board of Environmental, Health, and Safety Auditor Certifications.

C.

The International Organization of Supreme Audit Institutions.

D.

The International Standards Organization.

Questions # 12:

Which of the following is always true regarding the use of encryption algorithms based on public key infrastructure (PKI)?

Options:
A.

PKI uses an independent administrator to manage the public key.

B.

The public key is authenticated against reliable third-party identification.

C.

PKI's public accessibility allows it to be used readily for e-commerce.

D.

The private key uniquely authenticates each party to a transaction.

Questions # 13:

An organization decided to install a motion detection system in its warehouse to protect against after-hours theft. According to the COSO enterprise risk management framework, which of the following best describes this risk management strategy?

Options:
A.

Avoidance.

B.

Reduction.

C.

Elimination.

D.

Sharing.

Questions # 14:

Which of the following is useful for forecasting the required level of inventory?

1) Statistical modeling.

2) Information about seasonal variations in demand.

3) Knowledge of the behavior of different business cycles.

4) Pricing models linked to seasonal demand.

Options:
A.

1 and 2 only

B.

2 and 3 only

C.

1, 2, and 3 only

D.

1, 2, 3, and 4

Questions # 15:

Which of the following would provide the most relevant assurance that the application under development will provide maximum value to the organization?

Options:
A.

Use of a formal systems development lifecycle.

B.

End-user involvement.

C.

Adequate software documentation.

D.

Formalized non-regression testing phase.

Questions # 16:

A retail organization is considering acquiring a composite textile company. The retailer's due diligence team determined the value of the textile company to be $50 million. The financial experts forecasted net present value of future cash flows to be $60 million. Experts at the textile company determined their company's market value to be $55 million if purchased by another entity. However, the textile company could earn more than $70 million from the retail organization due to synergies. Therefore, the textile company is motivated to make the negotiation successful. Which of the following approaches is most likely to result in a successful negotiation?

Options:
A.

Develop a bargaining zone that lies between $50 million and $70 million and create sets of outcomes between $50 million and $70 million.

B.

Adopt an added-value negotiating strategy, develop a bargaining zone between $50 million and $70 million, and create sets of outcomes between $50 million and $70 million.

C.

Involve a mediator as a neutral party who can work with the textile company's management to determine a bargaining zone.

D.

Develop a bargaining zone that lies between $55 million and $60 million and create sets of outcomes between $55 million and $60 million.

Questions # 17:

Which of the following are likely indicators of ineffective change management?

1) IT management is unable to predict how a change will impact interdependent systems or business processes.

2) There have been significant increases in trouble calls or in support hours logged by programmers.

3) There is a lack of turnover in the systems support and business analyst development groups.

4) Emergency changes that bypass the normal control process frequently are deemed necessary.

Options:
A.

1 and 3 only

B.

2 and 4 only

C.

1, 2, and 4 only

D.

1, 2, 3, and 4

Questions # 18:

Which of the following statements best describes the frameworks set forth by the International Standards Organization?

Options:
A.

Globally accepted standards for industries and processes.

B.

Bridging the gaps among control requirements, technical issues, and business risks.

C.

Practical guidance and benchmarks for all organizations that use information systems.

D.

Frameworks and guidance on enterprise risk management, internal control, and fraud deterrence.

Questions # 19:

In which type of business environment are price cutting strategies and franchising strategies most appropriate?

Options:
A.

Embryonic, focused.

B.

Fragmented, decline.

C.

Mature, fragmented.

D.

Competitive, embryonic.

Questions # 20:

Which of the following roles would be least appropriate for the internal audit activity to undertake with regard to an organization's corporate social responsibility (CSR) program?

Options:
A.

Consult on project design and implementation of the CSR program.

B.

Serve as an advisor on internal controls related to CSR.

C.

Identify and prioritize the CSR issues that are important to the organization.

D.

Evaluate the effectiveness of the organization's CSR efforts.

Viewing page 2 out of 15 pages
Viewing questions 11-20 out of questions