The sophistication and formality of IS audit programs may vary significantly depending on which of the following factors?

A.
the target’s management hands-on involvement.

B.
the target’s location.

C.
the target’s size and complexity.

D.
the target’s budget.

E.
the target’s head count.

F.
None of the choices.

Explanation:
Properly planned risk-based audit programs shall increase audit efficiency and effectiveness. The sophistication
and formality of this kind of audit do vary a lot depending on the target’s size and complexity.