Information Systems Auditing

[A] Clear understanding of lawful activities

[B] Established mechanism for referring unlawful activities to the appropriate person

or group

[C] Interaction with preventive control to ensure that detected acts are prevented

from reoccurring

[D] Provision of necessary controls to counter or checkmate possible threats

[E]

Surprised checks by supervisors

[A] the user requirement specifications have been met

[B] end user operational documentation is accurate, comprehensive, and usable

[C] help Desk and other ancillary support functions operate correctly as expected

[D] back-up and recovery procedures work effectively

[E] None of the above

[A] Identifying and assessing a risk

[B] Taking steps to reduce a risk to an acceptable level

[C] Risk management is a

management’s responsibilty

[D] Risk management is NOT a management’s responsibilty

[E]

Risk management allows the organisation to achieve gain

[A] an inherent risk

[B] a control risk

[C] a detection risk

[D] an audit risk

[E] an efficient risk

[A] The review past history

[B] An examination of records in relation to transactions that they represent

[C] Summarizing organiztional asset

[D] All the above

[E] [A] and [B]

[A] Objectivity principle of auditing

[B] Independence principle of auditing

[C] Accountability principle of auditing

[D] all the above

[E] [A] and [B]

[A] Auditors credibility

[B] Auditor’s work performance

[C] Audit evidence

[D] all the above

[E] [A] and [B]