Chapter 1 Foundations of Internal Auditing

Question 1

Define and list the Core Principles and principle

Answer 1

Is the basis for internal audit effectiveness. The internal audit function is most effective if all principles re present and operating effectively.

a) Demonstrates integrity
b) Demonstrates Competence
c) Is Objective and free from undue influence (Independence)
d) Aligns with the strategies, objectives, and risk of th organization
e) Is appropriately positioned and adequately resourced
f) Demonstrates quality and continuous improvement
g) Communicates effectively
h) provides risk based assurance
i) Is insightful, proactive, and future focused
j) Promotes Organizational improvement.

Question 2

Which are the two types of guidance included in The International Professionals Practice Framework (IPPF) and what are their components :

Answer 2

Mandatory and Recommended Guidance

Question 3

What is Mandatory Guidance

Answer 3

Adherence to mandatory guidance is essential for the professional practice

Question 4

Definition of Internal Auditing

Answer 4

Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organizations operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.

Question 5

What is the purpose of Attribute Standards?

Answer 5

govern the responsibilities, attitudes and actions of the organization’s internal audit activity and the people who serve as internal auditors.

Question 6

What is the purpose of Performance Standards?

Answer 6

govern the nature of internal auditing and provide quality criteria for evaluating the internal audit function’s performance.

Question 7

What is the purpose of Interpretation Standards?

Answer 7

provided by the IIA to clarify terms and concepts referred to in Attribute and Performance Standards.

Question 8

What is the purpose of Implementation Standards?

Answer 8

expand upon the individual Attribute or Performance Standards by providing the requirements applicable to assurance (.A) or consulting (.C)

Question 9

The Internal Audit charter establishes

Answer 9

• Internal audit activity’s position within the organization
• Nature of the chief audit executive’s functional relationship with the board
• Authorizes access to records, personnel and physical properties to perform engagements
• Defines the scope of internal audit activities.

Question 10

The Standards (Internation Standards for the Professional Practices of Internal Auditing) serve which of the following functions:

Answer 10

a) Guide Adhearnce with the mandatory Elements of the International Professional Practices Framework
b) Provide a framework for performing and promoting a broad range of value added internal auditing services
c) Establish the basis for the evaluation of internal audit
d) Foster improved organizational processes and operations

Question 11

What is the mission of internal audit?

Answer 11

Enhance and protect organizational value by providing risk based and objective assurance, advice and insight.

Question 12

What are the elements of the Mandatory Guidance?

Answer 12

Mandatory Guidance

• Core Principles
• Definition of Internal Auditing
• Code of Ethics
• The Standards (International Standards of Professional Practice of Internal Auditing)

Question 13

What are the elements of the Recommended Guidance.

Answer 13

Recommended Guidance

• Implementation Guidance
• Supplemental Guidance

Question 14

What two elements are encompassed in the Code of Ethics and the Standards?

Answer 14

The Core Principles

Definition of Internal Auditing

Question 15

What is the purpose of the Recommended Guidance and what are the elements?

Answer 15

The pronouncements describe practices for effective implementation of the mandatory guidance.

These elements include:

• Implementation Guidance
• Supplementary Guidance

Question 16

The purpose of the Internal Audit Activity is to

Answer 16

Provide independent and objective assurance and consulting service designed to add value and improve an organization’s operations.

Question 17

Assurance services are defined as

Answer 17

an objective examination of evidence for the purpose of providing an independent assessment on governance, risk management, and control processes of the organization.

Question 18

The nature and scope of an engagement are determined by

Answer 18

The internal auditor

Question 19

How many parties are participants in assurance services and who are they?

Answer 19

Three

1) Process owner (person or group directly involved with the entity operation or other subject matter)
2) The internal auditor (person making the assessment)
3) The user (person using the assessment)

Question 20

Consulting services are defined as

Answer 20

activities intended to add value and improve an organization’s governance, risk management, and control processes without the internal auditor assuming management responsibility.
Nature and scope are subject to agreement with engagement client.

Question 21

How many parties are participants with the consulting engagement and who are they?

Answer 21

Two

1) The internal auditor (person or group offering the advice)
2) Engagement client (person seeking or receiving advice)

Question 22

The internal audit activities responsibility is to

Answer 22

Provide the organization with assurance and consulting services that will add value and improve the organization’s operations. Specifically the effectiveness of governance, risk management and control processes.

Question 23

The primary purpose of a Code of Ethical Conduct for a professional organization is to

Answer 23

Promote a culture among professional who serve others. In addition, to:

a) communicate acceptable values to all members, (doesn’t mean they’ll follow)
b) establish objective standards to measure own performance, and
c) to communicate organization’s to outsiders (doesn’t meant outsiders will believe)

Question 24

Voluntary compliance to the code is measured by

Answer 24

the cohesion and professionalism of an organization.

Question 25

To be effective a Code of Conduct should provide

Answer 25

Disciplinary actions for violators

Question 26

Typical components of the Code of Ethical Conduct include

Answer 26

Integrity
Objectivity
Confidentiality
Competence

Question 27

1. The principle of integrity is?

2. The rules of conduct related to integrity include:

Answer 27

1) Integrity establishes trust and thus provides the basis for reliance and judgement

2) 1.1 Shall perform their work with honesty, diligence, and responsibility
1. 2 shall observe the law and make disclosures expected by the law and the profession
1. 3 Shall not knowingly be party to illegal activity or engage in acts that are discreditable to the profession or to the organization
1. 4 Shall respect and contribute to the legitimate and ethical objectives or the organization

Question 28

Objectivity rule of conduct include

Answer 28

2. 1 shall not participate in any activity or relationship that may impair or be presumed to impare their unbiased assessment. Includes relationships that may be in conflict with the interest of the organization.
3. 2 Shall not accept anything that may impair or be presumed to impair their professional judgment
4. 3 Shall disclose all material facts known to them that, if not disclosed, may distort the reporting activities under review.

Question 29

The principles of objectivity state that

Answer 29

Internal auditors exhibit the highest level of professional objectivity. Internal auditors make a balanced assessment of all the relevant circumstances and are not unduly influenced by their own interest or by others in forming judgment.

Question 30

The principles of confidentiality state that

Answer 30

Internal auditors respect the value and ownership of information received and do not disclose without appropriate authority, unless is a legal or professional obligation.

Question 31

The rules of conduct for confidentiality are:

Answer 31

3. 1 Shall be prudent in the use and protection of information acquired in the course of their duties
4. 2 Shall not use information for any personal gain or in any manner that would be contrary to the law or detrimental to the organization or ethical objectives of the organization.

Question 32

The principles of competency state that

Answer 32

Internal auditors apply the knowledge, skills and experience needed in the performance of internal audit services

Question 33

The rules of conduct for competency include

Answer 33

4. 1 Shall engage only in those services for which they have the necessary knowledge, skills and experience.
5. 2 Shall perform internal audit services in accordance with the Standards
6. 3 Shall continually improve their proficiency and the effectiveness and quality of their services.

Question 34

Which Code of Ethics principle is the foundation of the other three principles and underpins which of the 4 elements of the IPPF?

Answer 34

Integrity is the foundation of objectivity, confidentiality, and competency. Integrity also underpins the Standards

Question 35

How does the CAE implement integrity within an organization?

Answer 35

a) by acting with integrity and adhering to the Code of Ethics
b) Establishing policies and procedures to guide the internal audit activity to show diligence and responsibility
c) Emphasize the importance of integrity by providing training that demonstrates integrity and other ethical principals.

Question 36

How does the CAE demonstrate objectivity?

Answer 36

by providing evidence of relevant policies and procedures for the internal audit activity or documentation of research into potential conflict of interest related to outsource and co-sourced activity for which the CAE has responsibility.

Question 37

Internal auditors may demonstrate confidentiality

Answer 37

by documenting distribution restriction in engagement workpapers and reports and by retaining authorization of all disclosures and approved distribution lists.

Question 38

The Internal Audit Charter must formally define

Answer 38

1) purpose, authority, and responsibility of the internal audit activity,
2) must be consistent with the mission of internal audit 3) refer to the 4 mandatory elements of the International Professional Practices Framework

Question 39

What is the responsibility of the CAE with respect to the Internal Audit Charter and who must review and is responsible for final approval?

Answer 39

1) Periodically review the IA Charter
2) Present to senior management and the board for approval.
3) Final approval resides with the board.

Question 40

What is the Internal Audit Charter and its purpose?

Answer 40

1) A formal document defining the internal audit activity’s purpose, authority and responsibility.
2) Established the internal audit activity’s position within the organization.
3) Nature of the CAE functional reporting relationship with the BOD
4) Authorized access to records, personnel and physical properties relevant to the performance of engagements
5) Defines the scope of internal audit activities
6) Define the nature of assurance and consulting services provided by internal audit activity

Question 41

If internal audit does not report to the Board or does not exist, the internal audit function reports to

Answer 41

the CAE will report to another committee or another body to which the governing body has delegated certain function, such as the audit committee.