CDE an online ticket sales agent, has unwittingly become an accomplice in cyber crime and is suffering attacks on its own business as a result CDE's website was poorly designed and cyber-attackers have managed to inject the site with malware, so that it collects all of CDE's customer log-in information and enables the cyber-attackers to retrieve it.
The cyber-attackers subsequently use this information to set up Botnet agents in the customers' devices which are then used in a Distributed Denial of Service (DDoS) attack whenever very popular tickets are being placed on sale such as international football matches.
The cyber-attackers secure access to a single portal on the site and buy multiple tickets for subsequent sale on the black market while the DDoS causes all other portals to be overloaded preventing real fans acquiring the tickets at face value.
Which TWO of the following apply in this scenario?

• A.CDE will need to implement a new firewall to prevent this type of attack.
• B.CDE customers will turn to other ticket sources for their tickets
• C.CDE is likely to face significant fines for the breach.
• D.CDE will remain just as profitable selling to the black market as to real fans
• E.CDE is likely to lose the ticket franchise for international football events

Comment: *

Name: *

Email: *

Verification: *

A government department is conducting a value for money audit on a school.
The school's pupils sit leaving exams. Classify each of the audit tests as either economy and efficiency or effectiveness.

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

Risk management involves all parties in an organisation.
Which of the following describe the Board's responsibilities for risk management?

• A.The Board is responsible for addressing any weaknesses in internal controls.
• B.The Board is responsible for considering whether weaknesses in internal controls need to be addressed.
• C.The Board is responsible for choosing the least risk products to promote.
• D.The Board is responsible for safeguarding the company's assets.
• E.The Board is responsible for maintaining a robust system of internal controls.

Comment: *

Name: *

Email: *

Verification: *

The internal audit department should always give a report at the end of its audit. This report is intended to be useful and help the company going forward. The report should always include any recommendations for improvements. Which of the following statements are true and which are false?

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

JHU has recently completed an eight year project. The project was evaluated at a discount rate of 10% and was accepted because the net present value was $18 million.
In year 3 of the project there was a significant unexpected repair arising because of the implementation stage of the project was rushed and some checks on equipment were skipped to save time. The cost of this was $8 million.
In year 8 of the project the costs of dismantling the project were $11 million more than anticipated because of unexpected changes to the law concerning disposal of industrial scrap.
How should these findings be reflected in the post completion audit?

• A.Poor project management cost the entity $16 million, to the nearest million.
• B.Poor project management cost the entity $11 million, to the nearest million.
• C.Poor project management cost the entity $6 million, to the nearest million.
• D.Poor project management cost the entity $5 million, to the nearest million.

Comment: *

Name: *

Email: *

Verification: *