Free IIA-CIA-Part3 Exam Dumps

Question 56

- (Exam Topic 1)
When assessing the adequacy of a risk mitigation strategy, an internal auditor should consider which of the following?
* 1. Management’s tolerance for specific risks.
* 2. The cost versus benefit of implementing a control.
* 3. Whether a control can mitigate multiple risks.
* 4. The ability to test the effectiveness of the control.

A. 1, 2, and 3
B. 1, 2, and 4
C. 1, 3, and 4
D. 2, 3, and 4

Correct Answer:C

Question 57

- (Exam Topic 1)
Which is the least effective form of risk management?

A. Systems-based preventive control.
B. People-based preventive control.
C. Systems-based detective control.
D. People-based detective control.

Correct Answer:D

Question 58

- (Exam Topic 2)
Which of the following statements is true regarding reversing entries in an accounting cycled

A. Reversing all previous closing adjustments is a mandatory step in the accounting cycle
B. Reversing entries should be completed at the end of the next accounting period after recording regular transactions of the period
C. Reversing entries are identical to the adjusting entries made in the previous period.
D. Reversing entries are the exact opposite of the adjustments made in the previous period.

Correct Answer:D

Question 59

- (Exam Topic 2)
Which of the following is an example of a smart device security control intended to prevent unauthorized users from gaining access to a device's data or applications?

A. Anti-malware software.
B. Authentication.
C. Spyware.
D. Rooting.

Correct Answer:B

Question 60

- (Exam Topic 2)
An organization has instituted a bring-your-own-device (BYOD) work environment Which of the following policies best addresses the increased risk to the organization's network incurred by this environment?

A. Limit the use of the employee devices for personal use to mitigate the risk of exposure to organizational data.
B. Ensure that relevant access to key applications is strictly controlled through an approval and review process
C. Institute detection and authentication controls for all devices used for network connectivity and data storage
D. Use management software to scan and then prompt patch reminders when devices connect to the network

Correct Answer:D