IIA-CIA-Part2 Exam Dumps | An internal auditor wants to determine whether employees are complying with the information security

Home
IIA
Practice of Internal Auditing
IIA.IIA-CIA-Part2.v2025-01-18.q191
Question 172

Valid IIA-CIA-Part2 Dumps shared by ExamDiscuss.com for Helping Passing IIA-CIA-Part2 Exam! ExamDiscuss.com now offer the newest IIA-CIA-Part2 exam dumps, the ExamDiscuss.com IIA-CIA-Part2 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com IIA-CIA-Part2 dumps with Test Engine here:

Access IIA-CIA-Part2 Dumps Premium Version
(603 Q&As Dumps, 35%OFF Special Discount Code: freecram)

<< Prev Question Next Question >>

Question 172/191

An internal auditor wants to determine whether employees are complying with the information security policy, which prohibits leaving sensitive information on employee desks overnight. The auditor checked a sample of 90 desks and found eight that contained sensitive information. How should this observation be reported, if the organization tolerates 4 percent noncompliance?

A. The matter does not need to be reported, because the noncompliant findings fall within the acceptable tolerance limit.

B. The deviations are within the acceptable tolerance limit, so the matter only needs to be reported to the information security manager.

C. The incidents of noncompliance fall outside the acceptable tolerance limit and require immediate corrective action, as opposed to reporting.

D. The incidents of noncompliance exceed the tolerance level and should be included in the final engagement report.

Correct Answer: D

When an internal auditor finds that the incidents of noncompliance exceed the organization's acceptable tolerance level, this should be included in the final engagement report. In this case, the 8 out of 90 desks found with sensitive information represent an 8.9% noncompliance rate, which exceeds the organization's tolerance limit of 4%. Reporting this observation in the final engagement report ensures that management is informed and can take necessary corrective actions to address the noncompliance.
Reference:
IIA Standards: 2410 - Criteria for Communicating
IIA Practice Guide: Reporting and Monitoring

Your email address will not be published. Required fields are marked *

Comment: *

Name: *

Email: *

Rating: *

Verification: *

Question List (191q): Question 1: Which of the following describes the primary objective of an...; Question 2: Due to emerging new technologies that greatly affect the org...; Question 3: Which of the following computerized audit tools or technique...; Question 4: How do internal auditors generally determine the priority of...; Question 5: Which of the following recommendation types is most likely t...; Question 6: Upon completing a follow-up audit engagement, the chief audi...; Question 7: Which of the following statements is true regarding risk ass...; Question 8: According to the Standards, which of the following is true r...; Question 9: According to IIA guidance, which of the following individual...; Question 10: What information would be most useful to an internal auditor...; Question 11: An engagement supervisor reviewed a staff internal auditor's...; Question 12: Which of the following should management action plans includ...; Question 13: According to HA guidance, which of the following is the Key ...; Question 14: Which of The following best describes a risk that is deemed ...; Question 15: According to IIA guidance, which of the following are the mo...; Question 16: Which of the following situations is most critical for the c...; Question 17: Which of the following is true about surveys?...; Question 18: Which of the following is an advantage of utilizing an exter...; Question 19: An internal auditor plans to conduct a walk-through to evalu...; Question 20: Which of the following best describes the four components of...; Question 21: Which of the following would most likely cause an internal a...; Question 22: Which of the following best exemplifies having effective ris...; Question 23: Which of the following internal audit activity staffing mode...; Question 24: The board of directors expressed concerns about potential ex...; Question 25: Which of the following is an appropriate role for the intern...; Question 26: According to IIA guidance, which of the following reflects a...; Question 27: According to IIA guidance, which of the following describes ...; Question 28: An internal auditor receives a document displaying all the s...; Question 29: An internal audit team was conducting an assurance engagemen...; Question 30: Following an IT systems audit, management agreed to implemen...; Question 31: Which of the following is most likely the subject of a perio...; Question 32: Which of the following is an appropriate responsibility for ...; Question 33: According to HA guidance, the chief audit executive is direc...; Question 34: Following an audit, management developed an action plan to i...; Question 35: Which of the following attribute sampling methods would be m...; Question 36: Which of the following statements is true regarding internal...; Question 37: During audit engagement planning, an internal auditor is det...; Question 38: Which of the following recommendations made by the internal ...; Question 39: According to IIA guidance, which of the following accurately...; Question 40: During a review of the treasury function an internal auditor...; Question 41: After completing an assurance engagement, the chief audit ex...; Question 42: A corporate merger decision prompts the chief audit executiv...; Question 43: While conducting an audit of a third party's Web-based payme...; Question 44: A chief audit executive's report to the board showed a signi...; Question 45: A chief audit executive (CAE) a developing a work program fo...; Question 46: During an assurance engagement, an internal auditor noted th...; Question 47: Which of The following best justifies an internal auditor's ...; Question 48: An internal auditor is conducting an initial risk assessment...; Question 49: Which of the following is the most appropriate approach for ...; Question 50: A chief audit executive (CAE) reviews the supervision of an ...; Question 51: According to IIA guidance which of the following best descri...; Question 52: During the filework phase of an assurance engagement the int...; Question 53: Which of the following is an effective approach for internal...; Question 54: An employee in the sales department completes a purchase req...; Question 55: An internal auditor discovered that equipment used to monito...; Question 56: An internal auditor is using computer-assisted audit techniq...; Question 57: When forming an opinion on the adequacy of management's syst...; Question 58: A bakery chain has a statistical model that can be used to p...; Question 59: An audit identified a number of weaknesses in the configurat...; Question 60: The newly appointed chief audit executive (CAE) of a large m...; Question 61: In a health care organization the internal audit activity pr...; Question 62: While reviewing the workpapers and draft report from an audi...; Question 63: According to IIA guidance, which of the following actions mi...; Question 64: When presenting an observation m writing which or the Mowing...; Question 65: Which of the following manual audit approaches describes tes...; Question 66: The internal auditors available to perform the engagement do...; Question 67: After the team member who specialized in fraud investigation...; Question 68: The chief audit executive (CAE) should determine whether the...; Question 69: Which of the following statements is true regarding a drawba...; Question 70: Which of the following statements about internal audit's fol...; Question 71: During a fraud interview, it was discovered that unquestione...; Question 72: New environmental regulations require the board to certify t...; Question 73: An organization recently acquired a subsidiary in a new indu...; Question 74: According to IIA guidance,which of the following is true abo...; Question 75: An internal auditor wanted to determine whether the organiza...; Question 76: What is the best course of action for a chief audit executiv...; Question 77: A large retail organization, which sells most of its product...; Question 78: Which of the following would present the most critical exter...; Question 79: An internal auditor discovered that a new employee was grant...; Question 80: Which of the followings statements describes a best practice...; Question 81: Which of the following internal audit procedures commonly in...; Question 82: What type of audit engagement would be the most appropriate ...; Question 83: Which of the following factors would be the most critical in...; Question 84: An organization is experiencing a significant risk that thre...; Question 85: Which of the following is a justifiable reason for omitting ...; Question 86: Acceding to MA guidance, when of the Mowing strategies would...; Question 87: Which of the following would be the most reliable source of ...; Question 88: An internal auditor is conducting a financial audit. Which o...; Question 89: Which of the following is an appropriate documentation of pr...; Question 90: Which of the following engagement supervision activities sho...; Question 91: Which of the following is not a primary purpose for conducti...; Question 92: Which method of examining entity-level controls involves gat...; Question 93: Which of the following best describes the manual audit proce...; Question 94: According to IIA guidance which of the following statements ...; Question 95: According to the Standards, which of the following is leasti...; Question 96: Which of the following engagement techniques would be best t...; Question 97: Which of the following is not a primary reason for outsourci...; Question 98: Which of the following components should be included in an a...; Question 99: Senior IT management requests the internal audit activity to...; Question 100: An internal auditor wanted to determine whether company vehi...; Question 101: If there is a significant error or omission in the final aud...; Question 102: The internal audit activity plans to assess the effectivenes...; Question 103: What is the primary purpose of creating a preliminary draft ...; Question 104: During an audit of the human resources department, an intern...; Question 105: According to IIA guidance, which of the following should be ...; Question 106: 'Internal policy prohibits employees from entering into cont...; Question 107: Which of the following actions are appropriate for the chief...; Question 108: Management requested internal audit consulting services. Dur...; Question 109: Which of the following internal audit activities is performe...; Question 110: A senior IT auditor is performing an audit of inventory valu...; Question 111: According to IIA guidance, which of the following typically ...; Question 112: According to IIA guidance, which of the following statements...; Question 113: The internal audit manager has been delegated the task of pr...; Question 114: Which of the following statements is true regarding the fina...; Question 115: Which of the following best describes external benchmarking ...; Question 116: An internal auditor performed a test of controls and found t...; Question 117: Acceding to IIA guidance, when of the Mowing is an assurance...; Question 118: An internal auditor has been asked to join a project team to...; Question 119: An internal auditor completed a consulting engagement coveri...; Question 120: Which of the following describes (he primary reason why a pr...; Question 121: Which of the following would not be a typical activity for t...; Question 122: While planning for an accounts payable audit an internal aud...; Question 123: An internal auditor has discovered that duplicate payments w...; Question 124: An internal auditor uses a data query tool in the purchasing...; Question 125: The chief audit executive of a medium-sized financial instit...; Question 126: Which of the following statements is true pertaining to inte...; Question 127: An organization has a health and safety division that conduc...; Question 128: Which of the following statements is true regarding engageme...; Question 129: An internal auditor notes that employees continue to violate...; Question 130: Which of the following is not a direct benefit of control se...; Question 131: An internal auditor wants to assess the completeness of sale...; Question 132: Management has taken immediate action to address an observat...; Question 133: A manufacturer is under contract to produce and deliver a nu...; Question 134: According to IIA guidance, which of the following steps shou...; Question 135: An organization does not have a formal risk management funct...; Question 136: Where should internal auditor focus their attention when ide...; Question 137: The chief audit executive (CAE) is developing a workpaper pr...; Question 138: Which of the following statements is true regarding engageme...; Question 139: Which of the following factors would the auditor in charge b...; Question 140: Which of the following situations would justify the removal ...; Question 141: According to IIA guidance, which of the following activities...; Question 142: An internal auditor is asked to determine why the production...; Question 143: What is the primary purpose of issuing a preliminary communi...; Question 144: An internal auditor is conducting a preliminary survey of th...; Question 145: Which of the following has the greatest effect on the effici...; Question 146: An engagement work program o of greatest value to audit mana...; Question 147: For which of the following fraud engagement activities would...; Question 148: An internal auditor determines that certain information from...; Question 149: An internal auditor develops an engagement observation relat...; Question 150: According to IIA guidance, which of the following statements...; Question 151: Acceding to IIA guidance, which of the following statements ...; Question 152: Which of the following is an advantage of nonstatistical sam...; Question 153: According to IIA guidance, which of the following best descr...; Question 154: The chief audit executive was asked to define me internal au...; Question 155: Which of the following statistical sampling approaches is th...; Question 156: An audit observation states the following: "Despite the rule...; Question 157: Prior to performing testing an internal auditor has determin...; Question 158: An internal auditor at a bank informed the branch manager of...; Question 159: Which of the following should be included in a privacy audit...; Question 160: An internal auditor tested whether purchase orders were supp...; Question 161: According to IIA guidance, which of the following is the mos...; Question 162: As a result of server managements assumption of risk there i...; Question 163: Which type of engagement would be the most appropriate to as...; Question 164: Which of the following is one of the differences between pro...; Question 165: Which of the following risk assessment approaches involves g...; Question 166: Which of the following would be the most helpful to a chief ...; Question 167: An internal auditor accessed accounts payable records and ex...; Question 168: Which of the following sources of testimonial evidence would...; Question 169: An internal auditor wants to compare performance information...; Question 170: Which of the following reasonably represents best practices ...; Question 171: According to IIA guidance, which of the following factors sh...; Question 172: An internal auditor wants to determine whether employees are...; Question 173: An internal auditor recommended that an organization impleme...; Question 174: An internal auditor is assessing the organization's risk man...; Question 175: The following is a list of major findings in the executive s...; Question 176: Which of the following actions is the most appropriate respo...; Question 177: Which of the following statements concerning workpapers is t...; Question 178: Internal control questionnaires are used to achieve which of...; Question 179: An internal auditor used a risk and control matrix to prepar...; Question 180: During a review of data privacy an internal auditor is taske...; Question 181: The audit committee has asked the chief audit executive (CAE...; Question 182: According to IIA guidance, which of the following would be c...; Question 183: An internal audit manager is planning a contract compliance ...; Question 184: Which of the following actives is an internal auditor most l...; Question 185: Which of the following would most Holy reflect the best poss...; Question 186: Due to price risk from the foreign currency purchase of avia...; Question 187: Which of the following is the most important determinant of ...; Question 188: An internal auditor suspects that employee turnover is unusu...; Question 189: Which of the following items, included in the preliminary au...; Question 190: The engagement supervisor would like lo change the audit pro...; Question 191: Which of the following steps should an internal auditor comp...

[×]

Download PDF File

Enter your email address to download IIA.IIA-CIA-Part2.v2025-01-18.q191.pdf

Email:

Disclaimer:
Freecram doesn't offer Real GIAC Exam Questions. Freecram doesn't offer Real SAP Exam Questions. Freecram doesn't offer Real (ISC)² Exam Questions. Freecram doesn't offer Real CompTIA Exam Questions. Freecram doesn't offer Real Microsoft Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates.
Freecram material do not contain actual actual Oracle Exam Questions or material.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation.
Freecram Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc.
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Freecram does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. Freecram does not own or claim any ownership on any of the brands.

Question 172/191

LEAVE A REPLY

Download PDF File