Which of the following roles would be least appropriate for the internal audit activity to undertake with regard to an organization's corporate social responsibility (CSR) program?

• A.Serve as an advisor on internal controls related to CSR.
• B.Consult on project design and implementation of the CSR program.
• C.Identify and prioritize the CSR issues that are important to the organization.
• D.Evaluate the effectiveness of the organization's CSR efforts.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is not an outcome of control self-assessment?

• A.Informal, soft controls are omitted, and greater focus is placed on hard controls.
• B.The entire objectives-risks-controls infrastructure of an organization is subject to greater monitoring and continuous improvement.
• C.Nonaudit employees become experienced in assessing controls and associating control processes with managing risks.
• D.Internal auditors become involved in and knowledgeable about the self-assessment process.

Comment: *

Name: *

Email: *

Verification: *

Which of the following COSO internal control framework components encompasses establishing structures, reporting lines, authorities, and responsibilities?

• A.Control environment.
• B.Information and communication.
• C.Monitoring.
• D.Control activities.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is always true regarding the use of encryption algorithms based on public key infrastructure (PKI)?

• A.PKI's public accessibility allows it to be used readily for e-commerce.
• B.PKI uses an independent administrator to manage the public key.
• C.The private key uniquely authenticates each party to a transaction.
• D.The public key is authenticated against reliable third-party identification.

Comment: *

Name: *

Email: *

Verification: *

Which of the following statements is true regarding the use of public key encryption to secure data while it is being transmitted across a network?

• A.Both the key used to encrypt the data and the key used to decrypt the data are made private.
• B.The key used to encrypt the data is made public but the key used to decrypt the data is kept private.
• C.The key used to encrypt the data is kept private but the key used to decrypt the data is made public.
• D.Both the key used to encrypt the data and the key used to decrypt the data are made public.

Comment: *

Name: *

Email: *

Verification: *