Exam 11: Auditing Computer-Based Information Systems

Andile Uzoma is the CEO of Chibuzo Incorporated.The board of directors has recently demanded that they receive more assurance that Chibuzo Incorporated is operating in an efficient,effective manner.Which type of audit would best suit the demands of the board of directors?

Which of the following is not one of the types of internal audits?

Explain the differences between each type of audit risk.

Briefly describe tests that can be used to detect unauthorized program modifications.

An auditor creates a fictitious customer in the system and then creates several fictitious sales to the customer.The records are then tracked as they are processed by the system.The auditor is using

Control risk is defined as the

The evidence collection stage of an operational audit includes all the following activities except

Expanding a firm's operations to include a manufacturing facility in Russia will

Which of the choices below best describes a risk-based audit approach?

Strong ________ controls can partially compensate for inadequate ________ controls.

Explain why the auditor's role in program development and acquisition should be limited.

What is the primary purpose of computer audit software?

Describe the risk-based audit approach.

How could auditors determine if unauthorized program changes have been made?

What role should an auditor play in system development?

What is the purpose of an information systems audit?

The ________ procedure for auditing computer process controls uses a hypothetical series of valid and invalid transactions.

Auditing involves the

When doing an information systems audit,auditors must review and evaluate the program development process.What errors or fraud could occur during the program development process?

An auditor sets an embedded audit module to record all credit transactions in excess of $4,000 and stores the data in an audit log.The auditor is using