Final Questions

Question 1

Best describes the purpose of a BPMN collapsed sub-process?

Answer 1

Contain a series of activities that are hidden from view

Question 2

Access Control

Answer 2

limit to who can use and change records in the system (example: passwords control who can use an application)

Question 3

Accounts Receivable

Answer 3

monies owed by customers for prior sales of goods or services. In data modeling context, AR are calculated as each customer’s sales less corresponding cash receipts

Question 4

Agents

Answer 4

the people or organizations who participate in business events such as customers and salespeople

Question 5

Application controls

Answer 5

ensure data integrity and an audit trail (for example: new invoices are assigned sequential numbers)

Question 6

Cash

Answer 6

organization’s monies in bank or related accounts. the instances of the class are individual accounts. considered a resource

Question 7

cash receipts

Answer 7

record receipts of cash from external agents (customers) and the corresponding deposit of those receipts into cash accounts. Considered an event

Question 8

Choreography

Answer 8

the interaction (message flows) between two participants (modeled as pools) in a process modeled using BPMN

Question 9

Collaboration

Answer 9

A BPMN model showing two participant pools and the interactions between then within a process

Question 10

Customer

Answer 10

the external agent in the sales and collections process

Question 11

error event

Answer 11

an intermediate event in a BPMN model showing processing for exceptions to the normal process flow

Question 12

Events

Answer 12

classes that model the organization’s transactions, usually affecting the organization’s resources such as sales and cash receipts

Question 13

Many-to-many relationship

Answer 13

exists when instances of one class (sales) are related to many instances of another class (inventory) and vice versa. these relationships are implemented in Access and relational databases by adding a linking table to convert the many-to-many relationship into two one-to-many relationships

Question 14

one-to-many relationships

Answer 14

exists when instances of one class are related to multiple instances of another class (example: a customer can participate in many sales but each sale involves only one customer)

Question 15

Orchestration

Answer 15

In BPMN, the sequence of activities within one pool

Question 16

Product

Answer 16

class representing the organization’s goods held for sales, that is, the organization’s inventory. considered a resource

Question 17

Quote

Answer 17

description of the products and/or services to be provided to a customer if ordered

Question 18

REA

Answer 18

resource-event-agent framework for modeling business processes, originally developed by William McCarthy

Question 19

Sales

Answer 19

Events documenting the transfer of goods or services to customer and the corresponding recognition of revenue for the organization

Question 20

Sales order

Answer 20

event documenting commitments by customers to purchase products. the sales order event precedes the economic event (sale)

Question 21

Subprocess

Answer 21

represent a series of process steps that are hidden from view in BPMN. the sue of subprocesses in modeling helps reduce complexity

Question 22

type image

Answer 22

class that represents management information (such as categorizations, policies, and guidelines) to help manage a business process. Type image often allows process information to be summarized by category

Question 23

Access point

Answer 23

logically connects stations to a firm’s network

Question 24

Audit around the computer (or black-box approach)

Answer 24

auditors test the reliability of computer generated information by first calculating expected results from the transactions entered into the system. Then, auditors compare these calculations to the processing or output results

Question 25

Audit through the computer (or white box approach)

Answer 25

requires auditors to understand the internal logic of the system/ application being tested

Question 26

computer-assisted audit techniques (CAATs)

Answer 26

essential tools for auditors to conduct an audit in accordance with heightened auditing standards

Question 27

continuous audit

Answer 27

preforming audit-related activities on a continuous basis

Question 28

data governance

Answer 28

the convergence of data quality, data management, data policies, business process management and risk management surrounding the handling of data in a firm

Question 29

Data mining

Answer 29

a process of using sophisticated statistical techniques to extract and analyze data from large databases to discern patterns and trends that were not previously known

Question 30

Data warehouse

Answer 30

a collection of information gathered from an assortment of external and operations (internal) databases to facilitate reporting from decision making and business analysis

Question 31

Database

Answer 31

A shared collection of logically related data for various uses

Question 32

Database system

Answer 32

a term typically used to encapsulate the constructs of a data model, database management system (DBMS) and database

Question 33

embedded audit module

Answer 33

a programmed audit module that is added to the system under review

Question 34

Firewall

Answer 34

a security system comprised of hardware and software that is built using routers, servers and a variety of software

Question 35

generalized audit software (GAS)

Answer 35

frequently used to perform substantive tests and sued for testing of controls through transactional data analysis

Question 36

hub

Answer 36

contains multiple ports

Question 37

integrated test facility (ITF)

Answer 37

an automated technique that enables test data to be continually evaluated during the normal operation of a system

Question 38

local area network (LAN)

Answer 38

a group of computers, printers, and other devices connected to the same network that covers limited geographical range such as a home, small office or a campus building

Question 39

MAC (media access control) address

Answer 39

a designated address that is connected to each device via the network and only sees trafic

Question 40

operating system (OS)

Answer 40

performs the tasks that enable a computer to operate; comprised of system utilities and programs

Question 41

operational database

Answer 41

often includes data for the current fiscal year

Question 42

parallel simulation

Answer 42

attempts to simulate the firm’s key features or processes

Question 43

remote access

Answer 43

connection to a data-processing system from a remote location (through a virtual private network)

Question 44

Router

Answer 44

software-based intelligent device that chooses the most efficient communications path through a network to the required destination

Question 45

Station

Answer 45

a wireless endpoint device equipped with a wireless network interface card

Question 46

Switch

Answer 46

an intelligent device that provides a path for each pair of connections on the switch by storing address information in its switching tables

Question 47

Test data technique

Answer 47

uses a set of input data to validate system integrity

Question 48

virtual private network (VPN)

Answer 48

securely connects a firm’s WANs by sending/receiving encrypted packets via virtual connections over the public Internet to distant offices, salespeople and business partners

Question 49

Wide are network (WAN)

Answer 49

links different sites together; transmits information across geographically dispersed LANs; and covers a broad geographic area such as a city, region, nation or an international link

Question 50

Wireless network

Answer 50

comprised of two fundamental architectural components: access points and stations

Question 51

Another name for data warehousing is data mining.

 a. True
 b. False

Answer 51

False

Question 52

Data warehousing refers to the short-term storage of large amounts of data for an entire enterprise.

 a. True
 b. False

Answer 52

False

Question 53

An operating system handles input and output to and from attached hardware devices, such as hard disks, printers, and dial-up ports and sends messages to each application or interactive user about the status of operation and any errors that may have occurred.

 a. True
 b. False

Answer 53

True

Question 54

Which of the following is not a function of generalized audit software?

 a. To aid in the random selection of transactions for substantive testing.
 b. To run in parallel with the client's application software and compare the output.
 c. To test the mathematical accuracy by footing and cross-foot items in the accounting system.
 d. To keep an independent log of access to computer application software.

Answer 54

D

Question 55

Which of the following is not a computer-assisted audit technique?

 a. Test data
 b. Tagging and lagging
 c. Integrated test facility
 d. Parallel simulation

Answer 55

B. Tagging and Lagging

Question 56

When would “auditing around the computer” be appropriate?

 a. When significant controls over the computer system are adequate.
 b. When significant controls over the computer system are not required.
 c. It is never appropriate to audit around the computer.

Answer 56

B

Question 57

: A virtual private network (VPN) sends encrypted messages though public Internet service providers.

 a. True
 b. False

Answer 57

True

Question 58

A _____ is a type of network equipment that directs information or data to transmit over the Internet.

 a. Server
 b. Router
 c. Firewall
 d. Switch

Answer 58

B. Router

Question 59

A ____ is a network with security and controlled access for a private group but built on top of a public network.

 a. Wide area network.
 b. Virtual organization.
 c. Middleware network.
 d. Virtual private network.

Answer 59

d. Virtual private network.

Question 60

Common IT techniques that are needed to implement continuous auditing include:

 a. Database management systems
 b. Computer-assisted audit techniques (CAATs)
 c. Data warehouses
 d. All of the above

Answer 60

All of the above

Question 61

Which of the following best describes the purpose of a balanced scorecard?

 a. Mission statement
 b. Performance measurement framework
 c. Strategy map
 d. Budgeting document

Answer 61

b. Performance measurement framework

Question 62

balanced scorecard framework

Answer 62

provides an integrating framework that describes organizational performance relative to its strategic objectives across four perspectives: learning and growth, process, customer, and finance. Objectives for each perspective describe the strategy in a series of cause-and-effect relationships

Question 63

Balanced scorecard management process

Answer 63

the process by which companies plan, implement and monitor performance. It consists of five steps: formulate the strategy, translate the strategy, link the strategy to operations, monitor performance and adapt

Question 64

Customer perspective

Answer 64

the balanced scorecard perspective that describes the organization’s customer related objectives and corresponding customer measures; it views organization performance from the customers’ perspective

Question 65

enterprise IT (EIT)

Answer 65

a type of information technology that restructures interactions within an organization and with external partners, such as customer relationship management systems

Question 66

financial perspective

Answer 66

the balanced scorecard perspective that describes the organization’s financial objectives and corresponding financial measures of performance; it views organizational performance from the shareholders’ perspective

Question 67

function IT (FIT)

Answer 67

a type of information technology that performs/supports a single function, such as spreadsheet applications

Question 68

information capital

Answer 68

an intangible asset that reflects the readiness of the company’s technology to support strategic internal processes. it includes computing hardware, infrastructure, applications and employees’ abilities to use technology effectively

Question 69

key performance indicator

Answer 69

those measures that the organization feels best indicates the performance of a particular activity

Question 70

learning and growth perspective

Answer 70

the balanced scorecard perspective that describes the organizations’ objectives and corresponding measures related to improvements in tangible and intangible infrastructure, such as human, information, and organizational capital

Question 71

network IT (NIT)

Answer 71

a type of information technology that allows people to communicate with one another such as e-mail and instant messaging

Question 72

process perspective

Answer 72

the balanced scorecard perspective that describes the organizations’ internal, process-related, objectives and corresponding measures; it views organizational performance from an internal perspective

Question 73

strategy map

Answer 73

a one-page representation of the firm’s strategic priorities and the cause-and-effect linkages to those strategic priorities

Question 74

value proposition

Answer 74

represents the product and service characteristics, such as price, quality, selection and brand image that the firm attempts to deliver to customers to meet or exceed customers’ expectations and thereby result in customer retention and new customer acqusition

Question 75

accounting rate of return (ARR)

Answer 75

the average annual income from the IT initiative divided by the initial investment cost

Question 76

acquisition costs

Answer 76

all direct and indirect costs necessary to acquire and implement the IT initiative

Question 77

alignment risk

Answer 77

the risk that an IT initiative is not aligned with the strategy of the organization

Question 78

benefits

Answer 78

the positive consequences to the organization of an IT investment

Question 79

breakeven analysis

Answer 79

determines the breakeven point, where the total value of benefits is equals that of total costs

Question 80

business case

Answer 80

economic justification for an IT investment or other major project

Question 81

change risk

Answer 81

the risk that the organization will be unable to make the changes necessary to implement the IT initiative successfully

Question 82

economic justification process

Answer 82

the process by which an organization creates a business case for an IT investment or other major project

Question 83

financial risk

Answer 83

the risk that the IT investment will not deliver expected financial benefits

Question 84

internal rate of return (IRR)

Answer 84

the discount rate (return) that makes a project’s net present value equal to zero

Question 85

net present value (NPV)

Answer 85

the sum of the present value of all cash inflows minus the sum of the present value of all cash outflows related to an IT investment or other capital investment

Question 86

operation cost

Answer 86

the recurring cost necessary to operate, maintain and administer an IT initiative

Question 87

payback period

Answer 87

the amount of time necessary to recoup a project’s initial investment

Question 88

project risk

Answer 88

the risk that the project will not be completed on time or within budget

Question 89

relevant costs

Answer 89

those costs that will change as a result of an IT initiative or other major project

Question 90

solution risk

Answer 90

the risk that the proposed solution will not generate expected benefits

Question 91

technological risk

Answer 91

the risk that the technology will not perform as expected to deliver the planned benefits

Question 92

value proposition

Answer 92

summarizes the costs and benefits of a preferred alternative IT investment, describing (1) the relevant time frames that the costs will by incurred and benefits realized, (2) the corresponding discount rates to apply future cash flows and (3) the sensitivity of the results to assumptions

Question 93

100% rule

Answer 93

a rule operation percent planning of all tasks, including all of the internal, external and interim tasks

Question 94

15-15 rule

Answer 94

a rule suggesting that if a project is more than 15% over budget or 15% off the planned schedule, it will likely never recoup the time or cost necessary to be considered successful. at this point a decision needs to be made on if or how to proceed from that point on

Question 95

analysis phase

Answer 95

the phase of the SDLC involves a complete, detailed analysis of the systems needs of the end user as well as a proposed solution

Question 96

critical path

Answer 96

the longest path for a project and represents the minimum amount of time needed for the completion of the project when sufficient resources are allocated

Question 97

design phase

Answer 97

the phase of the SDLC that involves describing in detail the desired features of the system that were uncovered in the analysis phase

Question 98

Gantt chart

Answer 98

a graphical representation of the project schedule that maps the tasks to a project calendar

Question 99

implementation phase

Answer 99

the phase of SDLC that involves development, testing and implementation of the new proposed system

Question 100

maintenance phase

Answer 100

the final phase of the SDLC that includes making changes, corrections, additions and upgrades (generally smaller in scope) to ensure the system continues to meet the business requirements that have been set out for it

Question 101

perceived ease of use

Answer 101

the extent to which a person perceives that the use of a particular system will be relatively free from effort

Question 102

perceived usefulness

Answer 102

the extent to which users believe the system will help them perform their job better

Question 103

planning phase

Answer 103

the phase of SDLC that summarizes the business needs with a high-level view of the intended project

Question 104

Program Evaluation Review Technology (PERT)

Answer 104

a project management tool used to help identify all tasks needed to complete a project. it is also helpful in determining task dependencies

Question 105

project

Answer 105

a series of tasks that are generally performed in a defined sequence to produce a predefined output

Question 106

project management

Answer 106

the process of carrying out the system development life cycle to achieve an intended outcome

Question 107

project manager

Answer 107

the lead member of the project team who is responsible for the project

Question 108

project sponsor

Answer 108

generally a senior executive in the company who takes responsibility for the success of the project

Question 109

scope creep

Answer 109

the change in a project’s scope after the project work has started

Question 110

systems analyst

Answer 110

person responsible for both determining the information needs of the business and designing a system to meet those needs

Question 111

systems development life cycle (SDLC)

Answer 111

the process of creating or modifying information systems to meet the needs of its users. it serves as the foundation for all processes people use to develop such systems

Question 112

technology acceptance model (TAM)

Answer 112

a model that predicts when users will adopt a new system to the extent they believe the system will help them perform their job better

Question 113

triple constaint

Answer 113

three factors that constrain information technology and other projects: cost, scope and time. also known as Dempster’s triangle

Question 114

work breakdown structure (WBS)

Answer 114

the process of identifying all tasks needed to complete a project