IIA-CIA-Part3-3P-CHS Practice Online

Question 1

An organization has instituted a bring-your-own-device (BYOD) work environment. Which of the following policies best addresses the increased risk to the organization's network incurred by this environment?

A : Limit the use of the employee devices for personal use to mitigate the risk of exposure to organizational data.

B : Ensure that relevant access to key applications is strictly controlled through an approval and review process.

C : Institute detection and authentication controls for all devices used for network connectivity and data storage.

D :

Use management software to scan and then prompt patch reminders when devices connect to the network.

Answer: D

Question 2

Which of the following are likely indicators of ineffective change management?

1. IT management is unable to predict how a change will impact interdependent systems or business processes.

2. There have been significant increases in trouble calls or in support hours logged by programmers.

3. There is a lack of turnover in the systems support and business analyst development groups.

4. Emergency changes that bypass the normal control process frequently are deemed necessary.

A : 1 and 3 only

B : 2 and 4 only

C : 1, 2, and 4 only

D : 1, 2, 3, and 4

Answer: C

Question 3

What are the objectives of governance as defined by the Standards?

A : Inform, direct, manage, and monitor.

B : Identify, assess, manage, and control.

C : Organize, assign, authorize, and implement.

D : Add value, improve, assure, and conform.

Answer: A

Question 4

An organization allows employees to use their personal mobile devices to access its database. Which of the following best maintains the confidentiality of different records within the database?

A : Regular remote wiping of the mobile devices accessing the database.

B : Encrypted data transmissions between mobile devices and the database.

C : Restrictions on the access permissions when mobile devices are used.

D : The use of two-factor authentication algorithms for those who use remote access.

Answer: B

Question 5

Which of the following is an example of a key systems development control typically found in the in-house development of an application system?

A : Logical access controls monitor application usage and generate audit trails.

B : The development process is designed to prevent, detect, and correct errors that may occur.

C : A record is maintained to track the process of data from input, to output, to storage.

D : Business users' requirements are documented, and their achievement is monitored.

Answer: C

Name:	Certified Internal Auditor - Part 3, Internal Audit Knowledge Elements
Exam Code:	IIA-CIA-Part3-3P-CHS
Certification:	Certified Internal Auditor
Vendor:	IIA
Total Questions:	628
Last Updated:	May 16, 2024

Download Demo IIA-CIA-Part3-3P-CHS Dumps

Create Account

Password Recovery

IIA-CIA-Part3-3P-CHS Practice Online

Download Demo IIA-CIA-Part3-3P-CHS Dumps

Member Login

Create Account

Password Recovery

IIA-CIA-Part3-3P-CHS Practice Online