IIA-CRMA Exam Practice Test Instant Access

Question 1

According to IIA guidance, which of the following statements is true?

ARisks in IT processes are best mitigated by individual controls.

BThe overall focus of the framework is on significant controls in all critical IT applications.

CIT risks and related controls are operational and best identified using a bottom-up approach.

DControl process risks are found at multiple layers of the IT environment.

Answer : D

Question 2

An internal auditor notes that employees are able to download files from the internet. According to IIA guidance, which of the following strategies would best protect the organization from the risk of copyright infringement and licensing violations resulting from this practice?

AApply antivirus and patch management software.

BUtilize dedicated and encrypted network connections.

CInstall a software inventory management application.

DUtilize secure socket layer encryption.

Answer : C

Question 3

While preparing for an audit of senior management expenses, the chief audit executive (CAE) learns that management is unable to locate a number of original expense claims to support the related disbursements. She decides to defer the engagement until they can be located. Which of the following principles likely guided the CAE's decision?

AObjectivity.

BProficiency.

CIndependence.

DDue professional care.

Answer : D

Question 4

Which of the following activities best reflects the scope and status of the internal audit activity as defined in the internal audit policy statement?

AThe internal auditor reviews the physical access to merchandise during an inventory count.

BThe audit manager conducts an internal quality assessment of the internal audit activity's adherence to the Standards.

CThe audit manager refrains from assigning an auditor who was a former payroll clerk to conduct a payroll audit.

DThe board approves the annual performance evaluation of the chief audit executive.

Answer : A

Question 5

Internal auditors must exercise due professional care by considering which of the following?

1. Cost of assurance in relation to potential benefits.

2. Adequacy and effectiveness of governance, risk management, and control processes.

3. Management's competency level in the area being evaluated.

4. Probability of significant errors, fraud, or noncompliance.

A1 and 2 only

B1, 2, and 3 only

C1, 2, and 4 only

D2, 3, and 4 only

Answer : C

Question 6

When internal auditors are preparing workpapers for the testing stage of an engagement, which of the following guidelines should be observed?

1. Include copies of all client files that were reviewed for the audit.

2. Avoid the use of professional, industry-appropriate jargon and technical terms.

3. Indicate the original sources of all data and information used in the workpapers.

4. Leave blank space for cross-references to be completed during the post-audit process.

A1 and 2 only

B1 and 4 only

C2 and 3 only

D3 and 4 only

Answer : C

Question 7

Which the following activities should be performed by the internal audit activity to facilitate an effective relationship with the audit committee?

1. Periodically report about the accounting standards followed by the organization.

2. Provide assurance to the audit committee that its charter, activities, and processes are appropriate.

3. Ensure that the role and activities of the internal audit activity are clearly understood and responsive to the needs of the audit committee.

4. Maintain open and effective communications with the audit committee.

A1 and 2 only

B3 and 4 only

C1, 3, and 4 only

D2, 3, and 4 only

Answer : D

IIA-CRMA Certification in Risk Management Assurance (CRMA) Exam Practice Test