According to IIA guidance, which of the following are macro-level audit activities performed for an assurance engagement of the purchasing department?
1. Obtain and review all purchasing-related audit reports issued within the past year.
2. Meet with the quality assurance group to discuss its previous reports of any purchasing-related findings.
3. Review a memo written by the purchasing manager that outlines ongoing problems with the purchasing software.
4. Request a copy of the report from a purchasing audit conducted last year by an external service provider.

• A.1 and 2.
• B.3 and 4.
• C.1 and 3.
• D.2 and 4.

Comment: *

Name: *

Email: *

Verification: *

According to the International Professional Practices Framework, which of the following are allowable activities for an internal auditor?
1. Advocating the establishment of a risk management function.
2. Identifying and evaluating significant risk exposures during audit engagements.
3. Developing a risk response for the organization if there is no chief risk officer.
4. Benchmarking risk management activities with other organizations.
5. Documenting risk mitigation strategies and techniques.

• A.4 and 5 only.
• B.1.2. 4. and 5 only.
• C.1.2, and 3 only.
• D.2. 3. 4. and 5 only.

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be considered a violation of The IIA's mandatory guidance on independence?

• A.The CAE updates the internal audit charter and presents it to the board for approval periodically, not on a specific timeline.
• B.The CAE confirms to the board, at least once every five years, the organizational independence of the internal audit activity.
• C.The chief audit executive (CAE) reports functionally to the board and administratively to the chief financial officer.
• D.The board seeks senior management's recommendation before approving the annual salary adjustment of the CAE.

Comment: *

Name: *

Email: *

Verification: *

The chief audit executive (CAE) has assigned an internal auditor to an upcoming engagement. Which of the following requirements would most likely indicate that the internal auditor was assigned to an assurance engagement?

• A.The assigned internal auditor must determine the objectives, scope, and techniques of the engagement.
• B.The CAE must personally obtain the needed skills, knowledge, or other competencies if the internal auditor does not have them.
• C.The assigned internal auditor must maintain objectivity while performing the engagement.
• D.The assigned internal auditor must not assume management responsibilities while performing the engagement.

Comment: *

Name: *

Email: *

Verification: *

An IT contractor applied for an internal audit position at a bank. The contractor worked for the bank's IT security manager two years ago. If the audit manager interviewed the contractor and wants to extend a job offer, which of the following actions should the chief audit executive pursue?

• A.Not allow the audit manager to hire the contractor, as it would be a conflict of interest.
• B.Not allow the audit manager to hire the contractor and ask the individual to apply again in one year.
• C.Allow the audit manager to hire the contractor, but state that the individual is not allowed to work on IT security audits for one year.
• D.Allow the audit manager to hire the contractor and state that the individual is free to perform IT audits, including security.

Comment: *

Name: *

Email: *

Verification: *