A comprehensive IS audit policy should include guidelines detailing what involvement the internal audit team
should have?
A.
in the development and coding of major OS applications.
B.
in the acquisition and maintenance of major WEB applications.
C.
in the human resource management cycle of the application development project.
D.
in the development, acquisition, conversion, and testing of major applications.
E.
None of the choices.
Explanation:
The audit policy should include guidelines detailing what involvement internal audit will have in the
development, acquisition, conversion, and testing of major applications. Such a policy must be approved by top
management for it to be effective.