B6 (Area IV)

Question 1

Information technology (IT) corporate governance goal is to

Answer 1

align with organizational objectives

Question 1

Six Sigma steps are

Answer 1

problem, analyze data, and control

Question 2

IT governance concept of

Answer 2

timeliness of data availability, depict the way an organization achieves its mission critical goals using IT strategies

Question 3

Supporting documentation for an organizations IT security policy is

Answer 3

industry regulations, performance standards for IT assets, protocols for IT processes

Question 4

Vision Statement security outlines how

Answer 4

an organization will protect tangible and intangible assets.

Question 5

Factors that those in charge of IT governance use to create organizations IT strategy are

Answer 5

vision statement, corporate strategy, regulations

Question 6

Virtual networks uses

Answer 6

outsourced computer power

Question 7

Internet provider vision to provide reliable and consistent network connectivity for all customer is reliant on

Answer 7

All IT personnel on company payroll, physical network, quick disaster recovery speeds

Question 8

Strong IT governance models have

Answer 8

both people and policies in place that help organizations reach objectives

Question 9

Responsibility of an information technology steering committee should be

Answer 9

formed to guide and oversee systems development and acquisition

Question 10

Function of information systems steering committee is

Answer 10

ensuring top management participation, guidance and control, coordination of integrating information systems, setting governing policies for various information systems

Question 11

Information resource are categorized as

Answer 11

medium impact when work around for its loss on short term but recovery is necessary for long term. High impact is organization cannot operate without information resource over short period of time. Low impact the organization could operate without information resource. No impact is not a category.

Question 12

Routers are

Answer 12

network devices that assign IP addresses and manage network traffic by source and destination fields

Question 13

1) Routers assign:
2) Switches:
3) Gateways:
4) Servers:

Answer 13

1) IP addresses
2) switches can divide one connection into multiple connections
3) gateways convert protocols to communicate with other network devices
4) servers coordinate programs data and other computers so that the network can operate but do not act and an intermediary.

Question 14

Virtual private networks creates an

Answer 14

encrypted communication tunnel across the internet for the purpose of allowing a remote user secure access into the network

Question 15

Error most likely detected by analyzing financial totals is

Answer 15

transportation error on one employees paycheck on weekly payroll (manual total will be calculated for each transaction then compared to computer generated batch control total)

Question 16

An accounting information system (AIS)

Answer 16

is a subsystem within management information system

Question 17

Accounting information system (AIS) is found in a

Answer 17

well design system of audit trail that allows a user to trace a transaction from source documents to financial reports

Question 18

Example of audit trail is authorized individual to select

Answer 18

inventory can be traced back by a copy of purchase order to see when item was ordered and who authorized it

Question 19

Management information systems

Answer 19

perform report data for strategic planning

Question 20

An example of decision support system (DDS) is

Answer 20

transaction processing system because (DSS) forecasts scenarios

Question 21

Enterprise resource planniny system is

Answer 21

integrate and secure data from all aspects of an organizations activities

Question 22

Supply chain management system concerned with

Answer 22

what goods were ordered, when goods were delivered and the amount paid

Question 23

B= Business, C= Consumer
Local food writer is asked by business to write a review about food this is an example of _________
Accountants referring to the AICPA website is__________

Answer 23

1) of C2B
2) is B2C

Question 24

Benefit of using electronic funds transfer for international cash transactions is

Answer 24

reducing frequency of entry errors

Question 25

Cloud computing can best be defined as

Answer 25

organizations that use internet access and applications that run on remote third party technology infrastructure

Question 26

The best reason for the company to switch to cloud computing is

Answer 26

usually has lower upfront costs of equipment and maintenance

Question 27

Disadvantage of IT outsourcing is

Answer 27

quality control because they are a third party with their own standards

Question 28

Veracity is

Answer 28

trustworthiness of your data,

Question 29

Publication phase of the data cycle

Answer 29

when data is circulated to users for various purposes.

Question 30

A document count is

Answer 30

how many invoices a company has

Question 31

Foreign key is process of

Answer 31

transforming raw data into information that can be used in relational database

Question 32

Descriptive Analytics analyzes sales

Answer 32

by looking at the average sales by region

Question 33

1) Predictive Analytics statistical techniques and forecasting models to ____________ 2) Diagnostic analytics focus on ____ 3) Prescriptive analytics use______

Answer 33

1) predict what could happen 2 determining why something occurred 3) optimization and simulation algorithms to affect future decisions

Question 34

1) SQL is most like used to _________ 2) C perform similar functions to SQL but ________ 3) C++ can execute queries but ______ 4) JavaScript focused on_______

Answer 34

1) involves extraction, which can be done by running queries 2) the language most likely being used for pulling records in database 3) broader terms of the application it has. SQL is more narrowly focused on queries 4) web programming and host of other applications

Question 35

Employ data mining allows

Answer 35

allows users to perform diagnostic analytics to drill into under lying data to better understand data

Question 36

1) Boxplot shows if there is 2) Dot Plot is a 3) Histogram a 4) Trend Line is a

Answer 36

1) a mean, median, minimum, maximum and outlier to compare 2) two dimensional map that shows the frequency of data points on one axis and another dimension on other 3) bar chart that plots a measurement of data points at different points in time does not show extremes 4) continuous graphing of data points over a specified time period

Question 37

1) Flowchart maps out 2) Waterfall chart shows 3) Directional Chart highlights

Answer 37

1) process, not cumulative effect of data points 2) cumulative effect of series of data points that make up total with incremental contributions making up total net income 3) milestones or events over multiple time periods

Question 38

A key difference in controls when

Answer 38

changing from manual system to a computer system bc its changing methodologies

Question 39

When seeking competitive advantage in planning the implementation of new software system

Answer 39

design an optimal process and then align the software

Question 40

Risk assessment identifies

Answer 40

whether the company has information that unauthorized individuals want.

Question 41

Risk management includes

Answer 41

risk assessment, trade off between risk and reward, risk inherent aspect of project

Question 42

Integrating general and application control procedures

Answer 42

part of basic design ensures effective control procedures

Question 43

General controls in an information system include

Answer 43

information technology infrastructure, security management, software acquisition

Question 44

Reviewing the systems access log most likely detects

Answer 44

computer related fraud

Question 45

Identification of critical applications is important to

Answer 45

include in the disaster and recovery plan

Question 46

Continuity Planning most effectively

Answer 46

restore business operations following a disaster

Question 47

To assure continuity in the event of a natural disaster the firm should

Answer 47

adopt an offsite mirrored web server

Question 48

Cold is a data processing disaster recovery site

Answer 48

but has not been stocked with equipment

Question 49

Hot site is a

Answer 49

Location that is equipped with the necessary hardware and software

Question 50

The primary purpose of a disaster recovery plan is to

Answer 50

specify the steps required to resume operations

Question 51

Incremental backup

Answer 51

backup copying only the data items that have changed since last backup

Question 52

System availability control example

Answer 52

raise the floors in the room where the network resides to avoid flood damage

Question 53

Primary objective of data security controls

Answer 53

access, change, or destruction

Question 54

Systems analyst start the process of

Answer 54

implementing a new software system

Question 55

Computer programmers create a

Answer 55

program based on a design

Question 56

Data entry and application programming should

Answer 56

be delegated to separate individuals

Question 57

A disadvantage of symmetric encrypt data is

Answer 57

both sender and receiver must have the private key before this encryption method will work

Question 58

Systems Analyst develops

Answer 58

long range plans, directing application development and computer operations

Question 59

Physical access control

Answer 59

separates unauthorized individuals from computer resources

Question 60

An application programmer should have the responsibility to

Answer 60

CODE approved changes to a payroll program

Question 61

1) Hashing involves______ 2) Both hashing and asymmetric encryption provides________

Answer 61

1) mapping large quantities of data into smaller table for recovering purposes. Encryption involves using a digital key to scramble. Asymmetric encryption is considered more secure. Symmetric provides less security than asymmetric 2) the same level of assurance enforceability of a digitally signed transactions as an inked signature

Question 62

Public Key Infrastructure (PKI) refers to

Answer 62

processes used to issue asymmetric keys and digital certificates

Question 63

Encryption in a electronically transmitting data would

Answer 63

provide the most assurance unauthorized release of sensitive information would be prevented

Question 64

What is used to prevent unauthorized access to files

Answer 64

Smart Card, Multifactor authentication, Multimodal authentication

Question 65

1) Asymmetric encryption 2) Private key

Answer 65

1) a public key is used to encrypt messages. 2) private key used to decrypt the the message at the other end

Question 66

Read but not write is the access staff accountants should have after

Answer 66

sending to management for approval

Question 67

Firewall prevents

Answer 67

unauthorized users from gaining access to network resources

Question 68

Multifactor authentication requires

Answer 68

both a password and a numerical key generated on a smartphone for its users to log in

Question 69

Users enter a log in name and password in an effort to

Answer 69

strengthen this the installation of fingerprint scanners

Question 70

Biometric Devices use mitigate the risk of

Answer 70

unauthorized access to its payroll data

Question 71

The highest risk of data integrity is

Answer 71

a spreadsheet into which the controller enters summary daily sales data from a printed report of an automated accounting system

Question 72

Calculate monetary value:

Answer 72

(Risk Probability) x (Cost) Risk is measured in: (H) = high action as soon as possible, (M) medium action and corrective action in a reasonable time frame, (L) low action no corrective action

Question 73

The 7 principles of quality management are

Answer 73

Customer Focus, Leadership, People Engagement, Process Approach, Continuous Improvement, Evidence Based Decision Making, Relationship Management

Question 74

Six Sigma

Answer 74

evaluate the achievement of goals and improving processes to reduce defective outputs

Question 75

What does IT stand for

Answer 75

Information Technology