IIA-CIA-Part3 Exam Practice Test Instant Access

Question 1

Which of the following backup methodologies would be most efficient in backing up a database in the production environment?

ADisk mirroring of the data being stored on the database.

BA differential backup that is performed on a weekly basis.

CAn array of independent disks used to back up the database.

DAn incremental backup of the database on a daily basis.

Answer : D

Question 2

In an effort to increase business efficiencies and improve customer service offered to its major trading partners, management of a manufacturing and distribution company established a secure network, which provides a secure channel for electronic data interchange between the company and its partners. Which of the following network types is illustrated by this scenario?

AA value-added network.

BA local area network.

CA metropolitan area network.

DA wide area network.

Answer : A

Question 3

Which of the following should internal auditors be attentive of when reviewing personal data consent and opt-in/opt-out management process?

AWhether customers are asked to renew their consent for their data processing at least quarterly.

BWhether private data is processed in accordance with the purpose for which the consent was obtained?

CWhether the organization has established explicit and entitywide policies on data transfer to third parties.

DWhether customers have an opportunity to opt-out the right to be forgotten from organizational records and systems.

Answer : C

Question 4

An internal auditor discusses user-defined default passwords with the database administrator. Such passwords will be reset as soon as the user logs in for the first time, but the initial value of the password is set as "123456." Which of the following are the auditor and the database administrator most likely discussing in this situation?

AWhether it would be more secure to replace numeric values with characters.

BWhat happens in the situations where users continue using the initial password.

CWhat happens in the period between the creation of the account and the password change.

DWhether users should be trained on password management features and requirements.

Answer : B

Question 5

Internal auditors want to increase the likelihood of identifying very small control and transaction anomalies in their testing that could potentially be exploited to cause material breaches. Which of the following techniques would best meet this objective?

AAnalysis of the full population of existing data.

BVerification of the completeness and integrity of existing data.

CContinuous monitoring on a repetitive basis.

DAnalysis of the databases of partners, such as suppliers.

Answer : A

Question 6

A financial institution receives frequent and varied email requests from customers for funds to be wired out of their accounts. Which verification activity would best help the institution avoid falling victim to phishing?

AReviewing the customer's wire activity to determine whether the request is typical.

BCalling the customer at the phone number on record to validate the request.

CReplying to the customer via email to validate the sender and request.

DReviewing the customer record to verify whether the customer has authorized wire requests from that email address.

Answer : B

Question 7

An internal auditor has requested the organizational chart in order to evaluate the control environment of an organization. Which of the following is a disadvantage of using the organizational chart?

AThe organizational chart shows only formal relationships.

BThe organizational chart shows only the line of authority.

CThe organizational chart shows only the senior management positions.

DThe organizational chart is irrelevant when testing the control environment.

Answer : A

IIA-CIA-Part3 Certified Internal Auditor-Internal Audit Knowledge Elements Exam Practice Test