Question 1

This type of control is intended to help ensure the accuracy, completeness, and security of outputs that result from application processing:

Accepted Answer

A) Input Controls 
B) Internal Controls 
C) Processing Controls 
D) Output Controls 
A) Input Controls 
B) Internal Controls 
C) Processing Controls 
D) Output Controls

Question 2

An extra digit added to a coded identification number, determined by a mathematical algorithm is called a:

Accepted Answer

A) Coded Digit Check 
B) Self-Checking Digit Check 
C) Sequence Check 
D) Run to Run Check 
A) Coded Digit Check 
B) Self-Checking Digit Check 
C) Sequence Check 
D) Run to Run Check

Question 3

The process of legitimately attempting to hack into an IT system to find whether weaknesses can be exploited by unauthorized hackers is referred to as:

Accepted Answer

A) Vulnerability assessment 
B) Intrusion detection 
C) Penetration testing 
D) Worm detection 
A) Vulnerability assessment 
B) Intrusion detection 
C) Penetration testing 
D) Worm detection

Question 4

The process of converting data from human readable form to computer readable form is referred to as:

Accepted Answer

A) Transcription 
B) Data Input 
C) Keyboarding 
D) Scanning 
A) Transcription 
B) Data Input 
C) Keyboarding 
D) Scanning

Question 5

A small piece of program code that attaches to the computer's unused memory space and replicates itself until the system becomes overloaded and shuts down is called:

Accepted Answer

A) Infections 
B) Virus 
C) Serum 
D) Worm 
A) Infections 
B) Virus 
C) Serum 
D) Worm

Question 6

Authorized employees may need to access the company IT system from locations outside the organization.These employees should connect to the IT system using this type of network.

Accepted Answer

A) Secure socket network 
B) Service set identifier 
C) Virtual private network 
D) Wireless encryption portal 
A) Secure socket network 
B) Service set identifier 
C) Virtual private network 
D) Wireless encryption portal

Question 7

A group of LANs connected to each other to cover a wider geographic area is called a:

Accepted Answer

A) Connected local network 
B) Wide area network 
C) Connected wide area 
D) Wide geographic network 
A) Connected local network 
B) Wide area network 
C) Connected wide area 
D) Wide geographic network

Question 8

A battery to maintain power in the event of a power outage meant to keep the computer running for several minutes after the power outage is an example of a(n):

Accepted Answer

A) Uninterruptible power supply 
B) System power supply 
C) Emergency power supply 
D) Battery power supply 
A) Uninterruptible power supply 
B) System power supply 
C) Emergency power supply 
D) Battery power supply

Question 9

This method of monitoring exposure can involve either manual testing or automated software tools.The method can identify weaknesses before they become network break-ins and attempt to fix these weaknesses before they are exploited.

Accepted Answer

A) Vulnerability assessment 
B) Intrusion detection 
C) Encryption examination 
D) Penetration testing 
A) Vulnerability assessment 
B) Intrusion detection 
C) Encryption examination 
D) Penetration testing

Question 10

This item, that strengthens the use of passwords, is plugged into the computer's card reader and helps authenticate that the use is valid; it has an integrated circuit that displays a constantly changing ID code.These statement describe:

Accepted Answer

A) Security token 
B) USB control key 
C) Smart card 
D) Biometrics 
A) Security token 
B) USB control key 
C) Smart card 
D) Biometrics

Question 11

Hardware, software, or a combination of both that is designed to block unauthorized access to an IT system is called:

Accepted Answer

A) Computer log 
B) Biometric device 
C) Firewall 
D) Security token 
A) Computer log 
B) Biometric device 
C) Firewall 
D) Security token

Question 12

This encryption method requests connection to the network via an access point and that point then requests the use identity and transmits that identity to an authentication server, substantially authenticating the computer and the user.

Accepted Answer

A) Wired Equivalency Privacy (WEP) 
B) Wired Encryption Provider (WEP) 
C) Wireless Provider Authentication (WP
A)  
D) Wireless Protection Access (WP
A)  
A) Wired Equivalency Privacy (WEP) 
B) Wired Encryption Provider (WEP) 
C) Wireless Provider Authentication (WP
A)  
D) Wireless Protection Access (WP
A)

Question 13

Many IT systems have redundant data storage such that two or more disks are exact mirror images.This is accomplished by the use of:

Accepted Answer

A) Redundant arrays of independent disks 
B) Redundant mirror image disks 
C) Mirror image independent disks 
D) Redundant mirror image dependent disks 
A) Redundant arrays of independent disks 
B) Redundant mirror image disks 
C) Mirror image independent disks 
D) Redundant mirror image dependent disks

Question 14

Internal controls used specifically in accounting applications to control inputs, processing, and outputs are referred to as a(n):

Accepted Answer

A) Specific controls 
B) Application controls 
C) General controls 
D) IT controls 
A) Specific controls 
B) Application controls 
C) General controls 
D) IT controls

Question 15

Specific software tools that monitor data flow within a network and alert the IT staff to hacking attempts or other unauthorized access attempts is called:

Accepted Answer

A) Security detection 
B) Vulnerability assessment 
C) Penetration testing 
D) Intrusion detection 
A) Security detection 
B) Vulnerability assessment 
C) Penetration testing 
D) Intrusion detection

Question 16

Internal controls that apply overall to the IT system are called:

Accepted Answer

A) Overall Controls 
B) Technology Controls 
C) Application Controls 
D) General Controls 
A) Overall Controls 
B) Technology Controls 
C) Application Controls 
D) General Controls

Question 17

All of the following are environmental control issues for physical hardware except for:

Accepted Answer

A) High temperatures 
B) Fires 
C) Excessive humidity 
D) All of the above 
E) None of the above 
A) High temperatures 
B) Fires 
C) Excessive humidity 
D) All of the above 
E) None of the above

Question 18

This term relates to making the computer recognize a user in order to create a connection at the beginning of the computer session.

Accepted Answer

A) User ID 
B) Password 
C) Smart card 
D) Login 
A) User ID 
B) Password 
C) Smart card 
D) Login

Question 19

This communication protocol is built into web server and browser software that encrypts data transferred on that website.You can determine if a website uses this technology by looking at the URL.

Accepted Answer

A) Secure sockets layer 
B) Service security line 
C) Secure encryption network 
D) Secure service layer 
A) Secure sockets layer 
B) Service security line 
C) Secure encryption network 
D) Secure service layer

Question 20

Internal controls that apply overall to the IT accounting system, that are not restricted to any particular accounting application, are referred to as a(n):

Accepted Answer

A) Specific controls 
B) Application controls 
C) General controls 
D) IT controls 
A) Specific controls 
B) Application controls 
C) General controls 
D) IT controls

This type of control is intended to help ensure the accuracy, completeness, and security of outputs that result from application processing:

An extra digit added to a coded identification number, determined by a mathematical algorithm is called a:

The process of legitimately attempting to hack into an IT system to find whether weaknesses can be exploited by unauthorized hackers is referred to as:

The process of converting data from human readable form to computer readable form is referred to as:

A small piece of program code that attaches to the computer's unused memory space and replicates itself until the system becomes overloaded and shuts down is called:

Authorized employees may need to access the company IT system from locations outside the organization.These employees should connect to the IT system using this type of network.

A group of LANs connected to each other to cover a wider geographic area is called a:

A battery to maintain power in the event of a power outage meant to keep the computer running for several minutes after the power outage is an example of a(n):

This method of monitoring exposure can involve either manual testing or automated software tools.The method can identify weaknesses before they become network break-ins and attempt to fix these weaknesses before they are exploited.

This item, that strengthens the use of passwords, is plugged into the computer's card reader and helps authenticate that the use is valid; it has an integrated circuit that displays a constantly changing ID code.These statement describe:

Hardware, software, or a combination of both that is designed to block unauthorized access to an IT system is called:

This encryption method requests connection to the network via an access point and that point then requests the use identity and transmits that identity to an authentication server, substantially authenticating the computer and the user.

Many IT systems have redundant data storage such that two or more disks are exact mirror images.This is accomplished by the use of:

Internal controls used specifically in accounting applications to control inputs, processing, and outputs are referred to as a(n):

Specific software tools that monitor data flow within a network and alert the IT staff to hacking attempts or other unauthorized access attempts is called:

Internal controls that apply overall to the IT system are called:

All of the following are environmental control issues for physical hardware except for:

This term relates to making the computer recognize a user in order to create a connection at the beginning of the computer session.

This communication protocol is built into web server and browser software that encrypts data transferred on that website.You can determine if a website uses this technology by looking at the URL.

Internal controls that apply overall to the IT accounting system, that are not restricted to any particular accounting application, are referred to as a(n):

Introduction to AIS

Foundational Concepts of the AIS

Fraud, Ethics, and Internal Control

IT Governance

Enterprise Resource Planning ERP Systems

Auditing Information Technology-Based Processes

Revenue and Cash Collection Processes and Controls

Expenditures Processes and Controlspurchases

Expenditures Processes and Controlspayroll and Fixed Assets

Conversion Processes and Controls

Administrative Processes and Controls

Data and Databases

E-Commerce and E-Business

Filters

Exam 4: Internal Controls and Risks in IT Systems

This type of control is intended to help ensure the accuracy, completeness, and security of outputs that result from application processing:

An extra digit added to a coded identification number, determined by a mathematical algorithm is called a:

The process of legitimately attempting to hack into an IT system to find whether weaknesses can be exploited by unauthorized hackers is referred to as:

The process of converting data from human readable form to computer readable form is referred to as:

A small piece of program code that attaches to the computer's unused memory space and replicates itself until the system becomes overloaded and shuts down is called:

Authorized employees may need to access the company IT system from locations outside the organization.These employees should connect to the IT system using this type of network.

A group of LANs connected to each other to cover a wider geographic area is called a:

A battery to maintain power in the event of a power outage meant to keep the computer running for several minutes after the power outage is an example of a(n):

This method of monitoring exposure can involve either manual testing or automated software tools.The method can identify weaknesses before they become network break-ins and attempt to fix these weaknesses before they are exploited.

This item, that strengthens the use of passwords, is plugged into the computer's card reader and helps authenticate that the use is valid; it has an integrated circuit that displays a constantly changing ID code.These statement describe:

Hardware, software, or a combination of both that is designed to block unauthorized access to an IT system is called:

This encryption method requests connection to the network via an access point and that point then requests the use identity and transmits that identity to an authentication server, substantially authenticating the computer and the user.

Many IT systems have redundant data storage such that two or more disks are exact mirror images.This is accomplished by the use of:

Internal controls used specifically in accounting applications to control inputs, processing, and outputs are referred to as a(n):

Specific software tools that monitor data flow within a network and alert the IT staff to hacking attempts or other unauthorized access attempts is called:

Internal controls that apply overall to the IT system are called:

All of the following are environmental control issues for physical hardware except for:

This term relates to making the computer recognize a user in order to create a connection at the beginning of the computer session.

This communication protocol is built into web server and browser software that encrypts data transferred on that website.You can determine if a website uses this technology by looking at the URL.

Internal controls that apply overall to the IT accounting system, that are not restricted to any particular accounting application, are referred to as a(n):

Introduction to AIS

Foundational Concepts of the AIS

Fraud, Ethics, and Internal Control

IT Governance

Enterprise Resource Planning ERP Systems

Auditing Information Technology-Based Processes

Revenue and Cash Collection Processes and Controls

Expenditures Processes and Controlspurchases

Expenditures Processes and Controlspayroll and Fixed Assets

Conversion Processes and Controls

Administrative Processes and Controls

Data and Databases

E-Commerce and E-Business

Filters