Professional Documents
Culture Documents
13 - Multiple Choice Questions
13 - Multiple Choice Questions
The internal auditor randomly selects participants in the job retraining program for
the past year to verify that they had met all the eligibility requirements. This type of
audit is best referred to as which of the following?
1. Compliance audit
2. Operational audit
3. Economy and efficiency audit
4. Program audit
c. Which of the following terms is used in internal auditing literature to refer to the
accomplishment of an enterprise’s objectives?
1. Efficiency
2. Effectiveness
3. Economy
4. Control
b. Under which of the following situations would the type of annual bonus offered to
the internal auditor be acceptable under the IIA standards concerning his or her
objectivity?
c. An internal auditor suspects that a cashier is “lapping receipts” (that is, covering up
temporary or permanent misappropriation by delaying recording transactions). What
is the first action that the internal auditor should take?
e. The chief audit executive (CAE) provides a report at each quarterly meeting of the
audit committee of the board. Senior management has requested that a copy of this
report be provided to senior managers prior to the audit committee meeting so that
issues can be resolved before the actual meeting where possible. How should the
CAE react to this request?
2. The CAE should provide the report to management only after the
audit committee meeting.
3The CAE should not provide the report to management because this is an
unacceptable limitation on the independence of the internal auditor.
4The CAE should provide the report for information only, and consider any
attempts by management to resolve issues prior to the committee meeting
as unwarranted interference with the independence of the audit function.
a. The definition of internal auditing and the IIA Standards set out which of the
following as included in the nature of work of internal auditing?
a. Which of the following is included in the IIA internal control objectives but not
explicitly included in the CoCo categories of control objectives?
1. Safeguarding of assets
2. Effectiveness and efficiency of operations
3. Reliability of internal and external reporting
4. Compliance with laws, regulations, policies, and procedures
b. Which of the following roles in the risk management process should not be
undertaken by the internal audit activity?
d. The CoCo Guidance on Control says that control cannot provide absolute assurance,
in part because there are inherent limitations in control. What do these inherent
limitations include?
e. Which of the following statements about the CoCo assessment principles is true?
f. Enterprise risk management means identifying the risks faced by the enterprise and
establishing an acceptable tolerance limit for each major risk to which the
enterprise is exposed. Which of the following statements is consistent with the
definition of risk limit?
1. Risk limit represents the amount of inherent risk that the enterprise is
prepared to accept.
2. Risk limit represents the amount of residual risk that the enterprise is
prepared to accept.
3. Risk limit represents the amount of systemic risk that the enterprise is
prepared to accept.
4. Risk limit represents the amount of audit procedures risk that the
enterprise is prepared to accept.