Text Material Preview
CIA Exam Part Three: Business Knowledge for Internal Auditing Version: Demo [ Total Questions: 10] Web: www.certsout.com Email: support@certsout.com IIA IIA-CIA-Part3-3P https://www.certsout.com https://www.certsout.com/IIA-CIA-Part3-3P-test.html IMPORTANT NOTICE Feedback We have developed quality product and state-of-art service to ensure our customers interest. If you have any suggestions, please feel free to contact us at feedback@certsout.com Support If you have any questions about our product, please provide the following items: exam code screenshot of the question login id/email please contact us at and our technical experts will provide support within 24 hours.support@certsout.com Copyright The product of each order has its own encryption code, so you should use it independently. Any unauthorized changes will inflict legal punishment. We reserve the right of final explanation for this statement. IIA - IIA-CIA-Part3-3PCerts Exam 1 of 5Pass with Valid Exam Questions Pool Exam Topic Breakdown Exam Topic Number of Questions Topic 2 : Exam Pool B 5 Topic 1 : Exam Pool A 5 TOTAL 10 IIA - IIA-CIA-Part3-3PCerts Exam 2 of 5Pass with Valid Exam Questions Pool A. B. C. D. A. B. C. D. A. B. C. D. Topic 2, Exam Pool B Question #:1 - (Exam Topic 2) A multinational organization has multiple divisions that sell their products internally to other divisions. When selling internally, which of the following transfer prices would lead to the best decisions for the organization? Full cost Full cost plus a markup. Market price of the product Variable cost plus a markup Answer: C Question #:2 - (Exam Topic 2) Which of the following best describes a detective control designed to protect an organization from cyberthreats and attacks? A list of trustworthy good traffic and a list of unauthorized blocked traffic. Monitoring for vulnerabilities based on industry intelligence Comprehensive service level agreements with vendors. Firewall and other network penmeter protection tools. Answer: D Question #:3 - (Exam Topic 2) Which of the following controls is designed to mitigate a physical IT risk? An automated fire prevention system. Access control restrictions in a system. Anti-malware protection software. A network isolating firewall system. Answer: B Reference: https://blog.usecure.io/physical-security-risks IIA - IIA-CIA-Part3-3PCerts Exam 3 of 5Pass with Valid Exam Questions Pool A. B. C. D. A. B. C. D. Question #:4 - (Exam Topic 2) Which of the following most accurately describes the purpose of application authentication controls? To ensure that data input into business applications is valid, complete, and accurate. To prevent or detect errors in data processed using business applications. To ensure that business applications are protected from unauthorized logical access. To ensure the validity, accuracy, and completeness of outputs from business applications. Answer: C Question #:5 - (Exam Topic 2) While auditing an organization's customer call center, an internal auditor notices that key performance indicators show a positive trend, despite the fact that there have been increasing customer complaints over the same period. Which of the following audit recommendations would most likely correct the cause of this inconsistency? Review the call center script used by customer service agents to interact with callers, and update the script if necessary. De-emphasize the importance of call center employees completing a certain number of calls per hour. Retrain call center staff on area processes and common technical issues that they will likely be asked to resolve. Increase the incentive for call center employees to complete calls quickly and raise the number of calls completed daily. Answer: C IIA - IIA-CIA-Part3-3PCerts Exam 4 of 5Pass with Valid Exam Questions Pool A. B. C. D. A. B. C. D. A. B. C. Topic 1, Exam Pool A Question #:6 - (Exam Topic 1) Which of the following statements best describes the frameworks set forth by the International Standards Organization? Globally accepted standards for industries and processes. Bridging the gaps among control requirements, technical issues, and business risks. Practical guidance and benchmarks for all organizations that use information systems. Frameworks and guidance on enterprise risk management, internal control, and fraud deterrence. Answer: A Question #:7 - (Exam Topic 1) Which of the following is an example of a risk avoidance response? Buying an insurance policy to protect against loss events. Hedging against natural gas price fluctuations. Selling a non-strategic business unit. Outsourcing a high risk process to a third party. Answer: C Question #:8 - (Exam Topic 1) For a multinational organization, which of the following is a disadvantage of an ethnocentric staffing policy? 1) It significantly raises compensation and staffing costs. 2) It produces resentment among the organization's employees in host countries. 3) It limits career mobility for parent-country nationals. 4) It can lead to cultural myopia. 1 and 4 only 2 and 3 only IIA - IIA-CIA-Part3-3PCerts Exam 5 of 5Pass with Valid Exam Questions Pool C. D. A. B. C. D. A. B. C. D. 1, 2, and 3 only 1, 2, and 4 only Answer: D Question #:9 - (Exam Topic 1) Which of the following phases of a business cycle are marked by an underuse of resources? 1) The trough. 2) The peak. 3) The recovery. 4) The recession. 1 and 3 only 1 and 4 only 2 and 3 only 2 and 4 only Answer: B Question #:10 - (Exam Topic 1) An organization uses a database management system (DBMS) as a repository for data. The DBMS, in turn, supports a number of end-user developed applications which were created using fourth-generation programming languages. Some of the applications update the database. Which of the following is the most important control related to the integrity of the data in the database? End users have their read-only applications approved by the information systems department before accessing the database. Concurrency update controls are in place. End-user applications are developed on personal computers before being implemented on the mainframe. A hierarchical database model is adopted so that multiple users can be served at the same time. Answer: B About certsout.com certsout.com was founded in 2007. We provide latest & high quality IT / Business Certification Training Exam Questions, Study Guides, Practice Tests. We help you pass any IT / Business Certification Exams with 100% Pass Guaranteed or Full Refund. Especially Cisco, CompTIA, Citrix, EMC, HP, Oracle, VMware, Juniper, Check Point, LPI, Nortel, EXIN and so on. View list of all certification exams: All vendors We prepare state-of-the art practice tests for certification exams. You can reach us at any of the email addresses listed below. Sales: sales@certsout.com Feedback: feedback@certsout.com Support: support@certsout.com Any problems about IT certification or our products, You can write us back and we will get back to you within 24 hours. https://www.certsout.com https://www.certsout.com/vendors.html https://www.certsout.com/Apple-Practice-Test.html https://www.certsout.com/Cisco-Practice-Test.html https://www.certsout.com/Citrix-Practice-Test.html https://www.certsout.com/CompTIA-Practice-Test.html https://www.certsout.com/EMC-Practice-Test.html https://www.certsout.com/ISC-Practice-Test.html https://www.certsout.com/IBM-Practice-Test.html https://www.certsout.com/Juniper-Practice-Test.html https://www.certsout.com/Microsoft-Practice-Test.html https://www.certsout.com/Oracle-Practice-Test.html https://www.certsout.com/Symantec-Practice-Test.html https://www.certsout.com/VMware-Practice-Test.html
