Question 1

________ is one tool used to document source data controls.

Accepted Answer

A) An input control matrix 
B) A flowchart generator program 
C) A program algorithm matrix 
D) A mapping program 
A) An input control matrix 
B) A flowchart generator program 
C) A program algorithm matrix 
D) A mapping program

Question 2

Consideration of risk factors and materiality is most associated with which audit stage?

Accepted Answer

A) Collection of audit evidence. 
B) Communication of audit results. 
C) Audit planning. 
D) Evaluation of audit evidence. 
A) Collection of audit evidence. 
B) Communication of audit results. 
C) Audit planning. 
D) Evaluation of audit evidence.

Question 3

Describe some of the important uses of CAATs.

Accepted Answer

Here are some of the important uses of C

Question 4

There is a direct relationship between inherent risk and detection risk.

Accepted Answer

A) True 
 B)False

Question 5

When programmers are working with program code,they often employ utilities that are also used in auditing.For example,as program code evolves,it is often the case that variables defined during the early part of development become irrelevant.The occurrences of variables that are not used by the program can be found using

Accepted Answer

A) program tracing. 
B) scanning routines. 
C) mapping programs. 
D) embedded audit modules. 
A) program tracing. 
B) scanning routines. 
C) mapping programs. 
D) embedded audit modules.

Question 6

When programmers are working with program code,they often employ utilities that are also used in auditing.For example,as program code evolves,it is often the case that blocks of code are superseded by other blocks of code.Blocks of code that are not executed by the program can be identified by

Accepted Answer

A) embedded audit modules. 
B) scanning routines. 
C) mapping programs. 
D) automated flow charting programs. 
A) embedded audit modules. 
B) scanning routines. 
C) mapping programs. 
D) automated flow charting programs.

Question 7

The ________ audit is concerned with the economical and efficient use of resources and the accomplishment of established goals and objectives.

Accepted Answer

A) financial 
B) informational 
C) information systems 
D) operational 
A) financial 
B) informational 
C) information systems 
D) operational

Question 8

Andile Uzoma is the CEO of Chibuzo Incorporated.The board of directors has recently demanded that they receive more assurance that internal controls surrounding the company's information system are effective.Which type of audit would best suit the demands of the board of directors?

Accepted Answer

A) Financial audit. 
B) Information system audit. 
C) Operational audit. 
D) Sustainability audit. 
A) Financial audit. 
B) Information system audit. 
C) Operational audit. 
D) Sustainability audit.

Question 9

An auditor examines all documents related to the acquisition,repair history,and disposal of a firm's delivery van.This is an example of collecting audit evidence by

Accepted Answer

A) confirmation. 
B) reperformance. 
C) vouching. 
D) analytical review. 
A) confirmation. 
B) reperformance. 
C) vouching. 
D) analytical review.

Question 10

Which of the following is not one of the six objectives of an information systems audit?

Accepted Answer

A) Security provisions exist to protect data from unauthorized access,modification,or destruction. 
B) Obtaining evidence to provide reasonable assurance the financial statements are not materially misstated 
C) Programs have been developed and acquired in accordance with management's authorization. 
D) Program modifications have received management's authorization and approval. 
A) Security provisions exist to protect data from unauthorized access,modification,or destruction. 
B) Obtaining evidence to provide reasonable assurance the financial statements are not materially misstated 
C) Programs have been developed and acquired in accordance with management's authorization. 
D) Program modifications have received management's authorization and approval.

Question 11

How could auditors determine if unauthorized program changes have been made?

Accepted Answer

A) By interviewing and making inquiries of the programming staff. 
B) By examining the systems design and programming documentation. 
C) By using a source code comparison program. 
D) By interviewing and making inquiries of recently terminated programming staff. 
A) By interviewing and making inquiries of the programming staff. 
B) By examining the systems design and programming documentation. 
C) By using a source code comparison program. 
D) By interviewing and making inquiries of recently terminated programming staff.

Question 12

In the ________ stage of an operational audit,the auditor measures the actual system against an ideal standard.

Accepted Answer

A) evidence collection 
B) evidence evaluation 
C) testing 
D) internal control 
A) evidence collection 
B) evidence evaluation 
C) testing 
D) internal control

Question 13

Which of the choices below best describes a risk-based audit approach?

Accepted Answer

A) A four-step approach to internal control evaluation. 
B) A three-step approach to internal control evaluation. 
C) A four-step approach to financial statement review and recommendations. 
D) A three-step approach to financial statement review and recommendations. 
A) A four-step approach to internal control evaluation. 
B) A three-step approach to internal control evaluation. 
C) A four-step approach to financial statement review and recommendations. 
D) A three-step approach to financial statement review and recommendations.

Question 14

An auditor searching for a shipping document to ensure that the sales number recorded in the sales journal was properly supported.This is an example of

Accepted Answer

A) review of the documentation. 
B) vouching. 
C) confirmation. 
D) analytical review. 
A) review of the documentation. 
B) vouching. 
C) confirmation. 
D) analytical review.

Question 15

An organization that has an antiquated accounting information system has more ________ risk than an organization that has a more advanced system.

Accepted Answer

A) control 
B) detection 
C) inherent 
D) investing 
A) control 
B) detection 
C) inherent 
D) investing

Question 16

Software that identifies unexecuted program code is called

Accepted Answer

A) automated flowcharting programs. 
B) automated decision table programs. 
C) mapping programs. 
D) tracing program. 
A) automated flowcharting programs. 
B) automated decision table programs. 
C) mapping programs. 
D) tracing program.

Question 17

The ________ procedure for auditing computer process controls uses a hypothetical series of valid and invalid transactions.

Accepted Answer

A) concurrent audit techniques 
B) test data processing 
C) integrated test facility 
D) dual process 
A) concurrent audit techniques 
B) test data processing 
C) integrated test facility 
D) dual process

Question 18

With regards to an accounting information system,a financial audit is most concerned with

Accepted Answer

A) the system's output. 
B) the system's input. 
C) the system's processing. 
D) the system's storage. 
A) the system's output. 
B) the system's input. 
C) the system's processing. 
D) the system's storage.

Question 19

The use of a secure file library and restrictions on physical access to data files are control procedures used together to prevent

Accepted Answer

A) an employee or outsider obtaining data about an important client. 
B) a data entry clerk from introducing data entry errors into the system. 
C) a computer operator from losing or corrupting files or data during transaction processing. 
D) programmers making unauthorized modifications to programs. 
A) an employee or outsider obtaining data about an important client. 
B) a data entry clerk from introducing data entry errors into the system. 
C) a computer operator from losing or corrupting files or data during transaction processing. 
D) programmers making unauthorized modifications to programs.

Question 20

What is a test data generator?

Accepted Answer

A) It is an application that records how well systems personnel have performed on company competency examinations. 
B) It is an application that prepares data that can be used for auditing the effectiveness of computer processing. 
C) It is an application that records which professional examinations systems personnel have obtained. 
D) It is a backup generator application that can be used to generate data if the original storage device fails. 
A) It is an application that records how well systems personnel have performed on company competency examinations. 
B) It is an application that prepares data that can be used for auditing the effectiveness of computer processing. 
C) It is an application that records which professional examinations systems personnel have obtained. 
D) It is a backup generator application that can be used to generate data if the original storage device fails.

Exam 11: Auditing Computer-Based Information Systems

________ is one tool used to document source data controls.

Consideration of risk factors and materiality is most associated with which audit stage?

Describe some of the important uses of CAATs.

There is a direct relationship between inherent risk and detection risk.

When programmers are working with program code,they often employ utilities that are also used in auditing.For example,as program code evolves,it is often the case that blocks of code are superseded by other blocks of code.Blocks of code that are not executed by the program can be identified by

The ________ audit is concerned with the economical and efficient use of resources and the accomplishment of established goals and objectives.

Andile Uzoma is the CEO of Chibuzo Incorporated.The board of directors has recently demanded that they receive more assurance that internal controls surrounding the company's information system are effective.Which type of audit would best suit the demands of the board of directors?

An auditor examines all documents related to the acquisition,repair history,and disposal of a firm's delivery van.This is an example of collecting audit evidence by

Which of the following is not one of the six objectives of an information systems audit?

How could auditors determine if unauthorized program changes have been made?

In the ________ stage of an operational audit,the auditor measures the actual system against an ideal standard.

Which of the choices below best describes a risk-based audit approach?

An auditor searching for a shipping document to ensure that the sales number recorded in the sales journal was properly supported.This is an example of

An organization that has an antiquated accounting information system has more ________ risk than an organization that has a more advanced system.

Software that identifies unexecuted program code is called

The ________ procedure for auditing computer process controls uses a hypothetical series of valid and invalid transactions.

With regards to an accounting information system,a financial audit is most concerned with

The use of a secure file library and restrictions on physical access to data files are control procedures used together to prevent

What is a test data generator?

Conceptual Foundations of Accounting Information Systems

Overview of Transaction Processing and Enterprise Resource Planning Systems

Systems Documentation Techniques

Relational Databases

Computer Fraud

Computer Fraud and Abuse Techniques

Control and Accounting Information Systems

Controls for Information Security

Confidentiality and Privacy Controls

Processing Integrity and Availability Controls

The Revenue Cycle: Sales to Cash Collections

The Expenditure Cycle: Purchasing to Cash Disbursements

The Production Cycle

The Human Resources Management and Payroll Cycle

General Ledger and Reporting System

Database Design Using the Rea Data Model

Implementing an Rea Model in a Relational Database

Special Topics in Rea Modeling

Introduction to Systems Development and Systems Analysis

Ais Development Strategies

Systems Design, implementation, and Operation

Filters