IIA iia cia part3 practice test

Question 1

Which of the following is the best example of IT governance controls?
A. Controls that focus on segregation of duties, financial and change management
B. Personnel policies that define and enforce conditions for staff in sensitive IT areas
C. Standards that support IT policies by more specifically defining required actions
D. Controls that focus on data structures and the minimum level of documentation required

Question 2

Which of the following are the most common characteristics of big data?

• A. Visibility, validity, vulnerability
• B. Velocity, variety volume.
• C. Complexity completeness constancy
• D. Continuity, control convenience

Question 3

Which of the following types of analytics focuses less on analysis and more on condensing data into
mote meaningful pieces of information?

• A. Diagnostic analytics
• B. Descriptive analytics
• C. Prescriptive analytics
• D. Predictive analytics

Question 4

According to HerzBerg's Two-Factor Theory of Motivation, which of the following factors ate
mentioned most often By satisfied employees?

• A. Salary and status
• B. Responsibility and advancement
• C. Work conditions and security
• D. Peer relationships and personal life

Question 5

Which of the following is the most effective control to prevent unauthorized entrance of a former
employee of the organization?
A. Revoking the former employee's biometrics from the entrance systems
B. Installing security guards who have undergone a background check at all entrances.
C. Installing multiple high-powered surveillance cameras throughout the organization
D. Keeping doors locked and accessible with a key that is provided only to employees

Question 6

Which of the following types of data analytics would be used by a hospital to determine which
patients are likely to require readmittance for additional treatment?

• A. Predictive analytics
• B. Prescriptive analytics
• C. Descriptive analytics
• D. Diagnostic analytics

Question 7

According to IIA guidance, which of the following statements is true with regard to workstation
computers that access company information stored on the network?

• A. individual workstation computer controls are not as important as companywide server controls.
• B. Particular attention should be paid to housing workstations away from environmental hazards.
• C. Cybersecurity issues can be controlled at an enterprise level making workstation level controls redundant
• D. With security risks near an all-time high workstations should not be connected to the company network

Question 8

Which of the following statements is true regarding cost-volume-profit analysis?

• A. Contribution margin is the amount remaining from sales revenue after fixed expenses have been deducted.
• B. Breakeven point is the amount of units sold to cover variable costs.
• C. Breakeven occurs when the contribution margin covers fixed costs
• D. Following breakeven, net operating income will increase by the excess of fixed costs less the variable costs per units sold

Question 9

Which of the following application controls checks the integrity of data entered into a business
application?

• A. Input controls.
• B. Output controls
• C. Processing controls
• D. Integrity controls

Question 10

Which of the following should be established by management during implementation of big data
systems to enable ongoing production monitoring?

• A. Key performance indicators
• B. Reports of software customization
• C. Change and patch management
• D. Master data management

Question 11

Which of me Wowing summarizes information about the cash receipts and cash payments for a
specific time period?

• A. Income statement
• B. Statement of cash flows.
• C. Balance sheet
• D. Owner's equity statement

Question 12

Which of the following is a project planning methodology that involves a complex series ot required
simulations to provide information about schedule risk?

• A. Monte Carlo Analysis
• B. Project Management Information System (PMIS)
• C. Earned Value Management (EVM).
• D. Integrated Project Plan A

Question 13

Which of the following is an example of a physical security control that should be in place at an
organization's data center?

• A. Backup servers in the data center are stored in an environmentally controlled location
• B. All users have a unique ID and password to access data
• C. Swipe cards are used to access the data center
• D. Firewalls and antivirus protection are in place to prevent unauthorized access to data.

Question 14

Which of the following application controls can be defined as controls that monitor data Being
processed and in storage to ensure it remains consistent and correct?

• A. Input controls
• B. Output controls
• C. Integrity controls
• D. Processing controls

Question 15

During an audit of the organization's annual financial statements, the internal auditor notes that the
current cost of goods sold percentage is substantially higher than in prior years. Which of the
following is the most likely explanation for this increase?

• A. Cost of raw material inventory items is decreasing.
• B. Process to manufacture goods is more efficient.
• C. Labor productivity to produce goods is increasing.
• D. Write-off of inventory is increasing.