In-house personnel performing IS audits should posses w…
In-house personnel performing IS audits should posses which of the following knowledge and/or skills (choose
2):
The ability of the internal IS audit function to achiev…
The ability of the internal IS audit function to achieve desired objectives depends largely on:
Well-written risk assessment guidelines for IS auditing…
Well-written risk assessment guidelines for IS auditing should specify which of the following elements at the
least (choose all that apply):
Your final audit report should be issued:
Your final audit report should be issued:
IS audits should be selected through a risk analysis pr…
IS audits should be selected through a risk analysis process to concentrate on:
What should be done to determine the appropriate level …
What should be done to determine the appropriate level of audit coverage for an organization’s IT environment?
Which of the following correctly describes the purpose …
Which of the following correctly describes the purpose of an Electronic data processing audit?
The use of risk assessment tools for classifying risk f…
The use of risk assessment tools for classifying risk factors should be formalized in your IT audit effort through:
A successful risk-based IT audit program should be based on:
A successful risk-based IT audit program should be based on:
Talking about application system audit, focus should al…
Talking about application system audit, focus should always be placed on: