IIA IIA-CIA-Part3 Dumps

Cash.

Dividends.

Gross margin.

Net income.

Restricting server room access to specific individuals

Housing servers with sensitive software away from environmental hazards

Ensuring that all user requirements are documented

Performing of intrusion testing on a regular basis

Functional-level strategy

Corporate-level strategy.

Business-level strategy,

DepartmentsHevet strategy

Cold recovery plan,

Outsourced recovery plan.

Storage area network recovery plan.

Hot recovery plan

Project portfolio.

Project development

Project governance.

Project management methodologies

$20,000,000

$24.500.000

$30.000.000

$35.200.000

Less use of policies and procedures.

Less organizational commitment by employees.

Less emphasis on extrinsic rewards.

Less employee’s turnover.

Only preventive measures.

Alternative and reactive measures.

Preventive and alternative measures.

Preventive and reactive measures.

Individual skills and capabilities.

Alignment with organizational strategy.

Financial and human resources of the unit.

Targets of key performance indicators

A revenue calculation spreadsheet supported with price and volume reports from the production department.

An asset retirement calculation spreadsheet comprised of multiple formulas and assumptions.

An ad-hoc inventory listing spreadsheet comprising details of written-off inventory quantities.

An accounts receivable reconciliation spreadsheet used by the accounting manager to verify balances

The spam filter removed Incoming communication that included certain keywords and domains.

The spam filter deleted commercial ads automatically, as they were recognized as unwanted.

The spam filter routed to the "junk|r folder a newsletter that appeared to include links to fake websites.

The spam filter blocked a fitness club gift card that coworkers sent to an employee for her birthday.

Wide area network.

Local area network

Metropolitan area network.

Storage area network.

Streamlined decision-making, rather than building consensus among users.

Consideration of the facts, rather than consideration of the emotions displayed by project stakeholders.

Focus on flexibility and adaptability, rather than use of a formal methodology.

Inclusion of critical features, rather than inclusion of an array of supplementary features.

Project plan development.

Project plan execution

Integrated change control.

Project quality planning

Facial comparison using photo identification.

Signature comparison.

Voice comparison.

Retinal print comparison.

Legitimate authority

Coercive authority.

Referent authority.

Expert authority.

A KPI that defines the process owner's tolerance for performance deviations.

A KPI that defines the importance of performance levels and disbursement statistics being measured.

A KPI that defines timeliness with regard to reporting disbursement data errors to authorized personnel.

A KPI that defines operating ratio objectives of the disbursement process.

A witness verifies the quantities of the copies signed.

A witness verifies that the contract was signed with the free consent of the promisor and promisee.

A witness ensures the completeness of the contract between the promisor and promisee.

A witness validates that the signatures on the contract were signed by the promisor and promisee.

Divesting product lines expected to have negative profitability.

Increasing the diversity of strategic business units.

Increasing investment in research and development for a new product.

Relocating the organization's manufacturing to another country.

Error listings.

Distribution controls.

Transaction logging.

Systems development controls.

Acid-test (quick) ratio

Average collection period

Current ratio.

Inventory turnover.

The business continuity management charter.

The business continuity risk assessment plan.

The business Impact analysis plan

The business case for business continuity planning

Data relationships are assumed to exist and to continue where no known conflicting conditions exist.

Analytical procedures are intended primarily to ensure the accuracy of the information being examined.

Data relationships cannot include comparisons between operational and statistical data

Analytical procedures can be used to identify unexpected differences, but cannot be used to identify the absence of differences

The board should be fully satisfied that there is an effective system of governance in place through accurate, quality information provided.

Compliance, audit, and risk management can find and seek efficiencies between their functions through integrated information reporting.

Key compliance and risk metrics can be tracked and compared throughout the enterprise, aiding in identifying problem departments.

Data analytics can be utilized for trending of the data to ensure that patterns and ongoing monitoring occurs throughout the organization.

Big data is being generated slowly due to volume.

Big data must be relevant for the purposes of organizations.

Big data comes from a single type of formal.

Big data is always changing

Assign a team with a trained audit manager to plan each audit and distribute field work tasks to various staff auditors.

Assign a team of personnel who have different specialties to each audit and empower Team members to participate fully in key decisions

Assign a team to each audit, designate a single person to be responsible for each phase of the audit, and limit decision making outside of their area of responsibility.

Assign a team of personnel who have similar specialties to specific engagements that would benefit from those specialties and limit Key decisions to the senior person.

Mutually exclusive relationship.

Direct relationship.

Intrinsic relationship.

Inverse relationship.

A balanced scorecard.

A quality audit

Earned value analysis.

Trend analysis

Change management practices to ensure operating system patch documentation is retained.

User role requirements are documented in accordance with appropriate application-level control needs.

Validation of intrusion prevention controls is performed to ensure intended functionality and data integrity.

Interfaces reinforce segregation of duties between operations administration and database development.

Measure product performance against an established standard.

Develop standard methods for performing established activities.

Require the grouping of activities under a single manager.

Assign each employee a reasonable workload.

Identification of achievable goals and timelines

Analysis of the competitive environment.

Plan for the procurement of resources

Plan for progress reporting and oversight.

A company reports trading and investment securities at their market cost

A building purchased last year for $1 million is currently worth ©1.2 million, but the company still reports the building at $1 million.

A building purchased last year for ©1 million is currently worth £1,2 million , and the company adjusts the records to reflect the current value

A company reports assets at either historical or fair value, depending which is closer to market value.

Assets minus liabilities.

Total assets.

Total liabilities.

Owners contribution plus drawings.

Cybercriminals hacking into the organization's time and expense system to collect employee personal data.

Hackers breaching the organization's network to access research and development reports

A denial-of-service attack that prevents access to the organization's website.

A hacker accessing she financial information of the company

Duplicate testing.

Joining data sources.

Gap analysis.

Classification

Use of a central processing unit

Use of a database management system

Use of a local area network

Use of electronic data Interchange

Scope change requests are reviewed and approved by a manager with a proper level of authority.

Cost overruns are reviewed and approved by a control committee led by the project manager.

There is a formal quality assurance process to review scope change requests before they are implemented

There is a formal process to monitor the status of the project and compare it to the cost baseline

It is useful when losses are considered insignificant.

It provides a better alignment with revenue.

It is the preferred method according to The IIA.

It states receivables at net realizable value on the balance sheet.

Face or finger recognition equipment,

Radiofrequency identification chips to authenticate employees with cards.

A requirement to clock in and clock out with a unique personal identification number.

A combination of a smart card and a password to clock in and clock out.

Application program code

Database system

Operating system

Networks

Maintenance service items such as production support.

Management of infrastructure services, including network management.

Physical hosting of mainframes and distributed servers

End-to -end security architecture design.

1 and 2

1 and 4

3 and A

2 and 3

Collections from customers

Sale of securities.

Purchase of trucks.

Payment of debt, including interest

A retina characteristics reader

A P3M code reader

A card-key scanner

A fingerprint scanner

Nondisclosure agreements between the firm and its employees.

Logs of user activity within the information system.

Two-factor authentication for access into the information system.

limited access so information, based on employee duties

This will support execution of the right-to-audit clause.

This will enforce robust risk assessment practices

This will address cybersecurity considerations and concerns.

This will enhance the third party's ability to apply data analytics

Require a Service Organization Controls (SOC) report from the service provider

Include a data protection clause in the contract with the service provider.

Obtain a nondisclosure agreement from each employee at the service provider who will handle sensitive data.

Encrypt the employees ' data before transmitting it to the service provider

Beginning inventory was overstated for the year.

Cost of goods sold was understated for the year.

Ending inventory was understated for the year.

Cost of goods sold was overstated for the year.

It can restore default settings and lock encrypted data when necessary.

It enables the erasure and reformatting of secure digital (SD) cards.

It can delete data backed up to a desktop for complete protection if required.

It can wipe data that is backed up via cloud computing

Last-in-first-Out (LIFO}.

Average cost.

First-in-first-out (FIFO).

Specific identification

Job complicating

Job rotation

Job enrichment

Job enlargement