Corporate Governance

Question 1

The principle of obtain and use information is used when?

Answer 1

When the organization obtains and uses relevant high quality information to support the functioning of the control

Question 2

The treadway commission was established by?

Answer 2

Private sponsoring organizations

Question 3

COSO prepared the internal control integrated framework to do what?

Answer 3

Help businesses assess internal control

Question 4

Insuring against losses or entering into joint ventures to address risk is known as?

Answer 4

Risk sharing

Question 5

A response to risk that involves the diversification of products offerings rather than elimination of product offerings is?

Answer 5

Risk reduction

Question 6

When management uses listings of potential events common to a specific industry as a means of identifying risks or opportunities, the method is known as?

Answer 6

event inventory

Question 7

Residual risk is what?

Answer 7

The risk that remains after management responds to the risk

Question 8

Sox requires that the audit committee be independent with regard to the issuer. What corporate officers would be considered independent? Independent auditor? Board member?

Answer 8

Independent auditor no, board member yes

Question 9

Risk appetite has generally been exceeded when?

Answer 9

The likelihood and impact of negative events significantly exceeds residual risk

Question 10

Broad, company wide objectives are what kind of objective?

Answer 10

Strategic objective

Question 11

Establishing objectives that will support the mission and vision of an organization generally involve supporting the mission with

Answer 11

Strategic objectives, supported by strategies and related objectives

Question 12

The principle that protects corporate directors from personal liability for acts performed in good faith on behalf of the corporation is known as

Answer 12

The business judgment rule

Question 13

ERM focuses on what goals?

Answer 13

Providing reasonable assurances that objectives and goals are achieved

Achievement of financial and performance targets

Risk assessment and mitigation

Question 14

What are the eight components of COSO

Answer 14

Internal environment
Setting objectives

Event identification
Assessment of risk
Risk response

Activities
Information and communication
Monitoring

Question 15

A situation when a company implements new technology and hires an individual to help document new policies and procedures and develop training is an example of what?

Answer 15

Change management

Question 16

The enterprise risk management integrated framework of COSO is best defined as

Answer 16

Process affected by an entity’s board of directors, management, and other personnel

Question 17

Non financial measures of a process are best viewed as what?

Answer 17

Attention directors

Question 18

Total productivity ratios consider what?

Answer 18

All inputs and prices of those inputs

Question 19

Pareto diagrams do what?

Answer 19

Combine elements of a histogram of quality control issues displayed in order of most to least frequent with a line graph that displays the cumulative occurrence of the problems/ defects/ quality issues

Question 20

Non financial measures are more easily associated with what kind of objectives

Answer 20

Operational

Question 21

What is the best way to measure productivity

Answer 21

Number of units per hour

Question 22

If programs are developed internally, how much of the programming budget will normally be devoted to program maintenance?

Answer 22

a large portion of the budget and program maintenance is never simple

Question 23

Can the duties of programmers and application programmers be combined?

Answer 23

no!

Question 24

before a program is released to production it should be tested by someone other than the programmer who developed it.

Answer 24

n/a

Question 25

Can the duties of system analysts and application programmers be combined?

Answer 25

yes

Question 26

What do systems programmers do?

Answer 26

They work with operating systems and compilers

Question 27

Can a database administrator and a network administrator be the same person?

Answer 27

Yes

Question 28

System

Answer 28

n/a