According to IIA guidance, which of the following is accurate regarding the chief audit executive's (CAE's) requirement to report the results of quality assessments?
1. The CAE must report the results of external assessments at least annually.
2. The CAE must report the results of ongoing monitoring at least annually.
3. The CAE must report the results of quality assessments to senior management.
4. The CAE must report the results of quality assessments to the board.
With regard to governance, which of the following is a board-level responsibility rather than a management responsibility?
Which of the following best demonstrates internal auditors performing their work with proficiency?
Which of the following statements is true regarding the role of the internal audit activity in the organization's risk management process?
Which of the following statements is the most appropriate for a chief audit executive to include in the internal audit policy manual in order to promote objectivity?
The chief audit executive (CAE) has hired a new internal auditor who was immediately assigned to a procurement function audit. Because the new auditor's name is similar to that of the procurement manager, some staff members think the two are related, although they are not. Which of the following actions is most appropriate for the CAE to take?
Which of the following describes the primary objective when implementing a risk management framework?
An organization is considering purchasing a new banking software system and has asked the internal audit activity to evaluate the system. An internal auditor assigned to perform the engagement worked at the software company two years ago and is familiar with the system's design strengths and weaknesses. Which of the following is true regarding impairment to the auditor's objectivity?
Which of the following is most likely to impair the internal audit activity's independence?
According to HA guidance, if an internal auditor suspects fraud during an assurance engagement, what should the auditor do first?
Which of the following is an indicator of ineffective third-party risk management?
A new internal audit activity is considering the adoption of a risk and control framework. Which of the following is the most appropriate consideration during this process?
Which of the following would most likely be classified as a consulting engagement?
A chief audit executive (CAE) identifies that the internal audit activity lacks a necessary skill to perform a management request for a consulting engagement. According to IIA guidance, which of the following is the most appropriate action the CAE should take regarding the request?
The chief audit executive (CAE) annually develops a budget and resource plan and submits it to the board for approval. This action best fulfills which of the following responsibilities of the CAE?
During the planning stage of an assurance engagement, a payroll clerk informed the internal auditor that he is often asked to add new employees to the payroll without any formal new-hire documentation from human resources. The auditor is concerned that this increases the risk for fraud. To complete engagement planning, which of the following is the most appropriate next step for the auditor to take?
Which of the following is an area that an organization would most likely include as part of its corporate social responsibility reporting?
The collaborating style for conflict resolution, where the parties promote assertiveness and work together to develop a mutually beneficial solution, is best used in which of the following situations?
What is an appropriate first step in an internal auditor’s fraud risk assessment to evaluate how the organization manages such risk?
According to the Standards, in today's technology and business environments, how much computer and information systems-related knowledge and skills must an internal auditor have to be effective in fulfilling his job responsibilities?
Which of the following scenarios provides the most concerning red flag or indicator of possible fraud?
According to The IIA’s Code of Ethics, which of the following best describes the principle of integrity?
Which of the following is true regarding internal audit role's in The IIA's Three Lines Model?
According to MA guidance, which of the following is an appropriate role for the internal audit activity?
Which of the following engagements would be considered an appropriate consulting service?
Who has the ultimate responsibility of implementing the organization’s governance system?
Which of the following can be used to minimize employees’ resentment of controls?