Information Technology

Question 1

Which IT personnel roles should always be segregated?

Answer 1

C - Control group
O - Operators
P - Programmers
A - Systems Analyst
L - Librarians

Question 2

What are the duties of a systems analyst?

Answer 2

Designs or purchases IT system
Responsible for flowcharts
Liaison between Users and Programmers
Note: Think IT Manager

Question 3

What is the primary duty of a Systems Administrator?

Answer 3

A Systems Administrator controls database access.

Question 4

What are the duties of a Systems Programmer?

Answer 4

Application Programer - Application/Software developer (software engineers) is the person responsible for writing and/or maintaining application programs.
SHOULD NOT be given write/update access to data in production systems or unrestricted and uncontrolled access to application program change management systems.
System Programers - are responsible for installing, supporting (troubleshooting), monitoring, and maintaining the operating system. May also perform capacity planing functions and testing and applying upgrades.
Writes- Updates- Maintains- & Tests software- systems- and compilers
SHOULD NOT be given write/update access to data in production systems or access to change management systems.

Question 5

Which duties should a Systems Programmer NOT have?

Answer 5

In order to maximize internal control- a Systems Programmer should NOT have application programming duties/abilities or be an Operator on the system.

Question 6

What are the duties of a Systems Operator?

Answer 6

Schedules and Monitors JobsRuns IT Help Desk.

SHOULD NOT be a Programmer on the system.

Question 7

What is the primary function of a database management system?

Answer 7

To create and modify the database.

Question 8

If it is not possible to segregate duties in an IT System- what actions should be taken to compensate for internal control purposes?

Answer 8

Include Computer Logs.

Control Group should review the logs.

Question 9

What is the purpose of a Management Information System (MIS)?

Answer 9

To assist with decision making. More broad than DSS.
Provides users predefined reports that support effective business decisions. MIS reports may provide feedback on daily operations.

Question 10

What are the characteristics of an Executive Information System (EIS)?

Answer 10

Specialized for Company Executive needs
Assists with Strategy Only
No Decision-Making Capabilities

Question 11

What are the characteristics of an Expert System (ES)?

See Decision Support System

Answer 11

Computer uses reasoning
Structured
No human interpretation needed

Question 12

What are the characteristics of a Decision Support System (DSS)?

Answer 12

Sometimes called Expert System.
It is an extension of an MIS that provides interactive tools to support decision making. It may provide information, facilitate the preparation of forecasts, or allow modeling of various aspects of a decision.
Computer provides data
Gives Interactive Support
Human interpretation needed

Question 13

What are the characteristics of an Ad Hoc computer report?

Answer 13

User initiates the report.

The report is created upon demand.

Question 14

When are Exception reports generated?

Answer 14

Exception reports are produced when Edit Tests- Check Digits- or Self-Checking Digits identify a problem

Question 15

What is a query?

Answer 15

A type of Ad Hoc report- initiated by a user.

Question 16

What is End-User Computing?

Answer 16

The User develops and executes their own application.

Question 17

What is the primary benefit of E-commerce?

Answer 17

E-commerce makes business transactions easier.

Question 18

What are the risks of E-commerce?

Answer 18

Compromised data or theft.

Less paper trail for auditors.

Question 19

What are the benefits of Electronic Data Interchange?

Answer 19

Uses globally-accepted standards

Efficient

Question 20

What is a File Server?

Answer 20

A file server stores shared programs and documents.

Question 21

What is the purpose of a Database?

Answer 21

Located on a File Server- a Database allows users to share documents.

Question 22

What is the purpose of a LAN (Local Area Network)?

Answer 22

It connects computers in close proximity.

Question 23

What is the purpose of a WAN (Wide Area Network)?

Answer 23

It connects computers that are far apart.

Question 24

What are the characteristics of a VAN (Value-Added Network)?

Answer 24

Privately-owned Network
Serves as 3rd Party Between 2 Companies
Routes EDI Transactions
Accepts wide range of Protocols
Very Costly

Question 25

What is the purpose of a Firewall?

Answer 25

Prevents unauthorized access to a network.

Question 26

What are the characteristics of a virus?

Answer 26

Takes over a computer

Needs a host program to run

Question 27

What are the characteristics of a computer worm?

Answer 27

Takes over multiple computers

Doesn’t need a host program to run

Question 28

What is the purpose of Automated Equipment Controls?

Answer 28

They prevent and detect hardware errors.

Question 29

What is RAM?

Answer 29

Random Access Memory.

Internal memory in the computer used during immediate processing.

Question 30

What is a CPU?

Answer 30

Computer Processing Unit

It processes commands within a computer.

Question 31

What is Job Control Language?

Answer 31

It schedules and allocates system resources.

Question 32

What are examples of input devices?

Answer 32

Keyboard
Mouse
Scanner
Magnetic Ink Reader
Magnetic Tape Reader
EDI
Point of Sale Scanner

Question 33

What are examples of Output Devices?

Answer 33

Speakers
Monitors
Printers

Question 34

What are the characteristics of Magnetic Tape storage?

Answer 34

Sequential Access - Sorts data in order

Slower data retrieval

Header Label prevents Operator error by loading wrong tape

External Labels prevent accidental destruction by operator

Question 35

What are the characteristics of Magnetic Disks?

Answer 35

Random Access - Finds data in random spots

Faster data retrieval

Uses Boundary Protection for data

Question 36

What is a Gateway?

Answer 36

Connects one network to another

Note: the Internet is connected by Gateways

Question 37

What are Parity Checks?

Answer 37

Output Encryption control
A control that detects internal data errors.
A bit is added to each character- it checks to see if a bit was lost.

Question 38

What is an Echo Check?

Answer 38

Output Encryption control
Transmitted data is returned to the sender for verification (it echoes back to the sender)
It minimizes the risk of data transmission errors

Question 39

What is a Change Control?

Answer 39

It authorizes program changes and approves program test results.

Question 40

What is security software?

Answer 40

Software that controls access to IT systems.

Note: Don’t confuse this with anti-virus software

Question 41

What is the purpose of a Digital Signature?

Answer 41

It confirms a message has not been altered.

Question 42

List the types of computers from smallest to largest

Answer 42

PDA/Smartphone/Tablet

Microcomputer - PC- Laptop (cost-effective)

Minicomputer - Like a Mainframe- but smaller

Mainframe - Large computer with terminals attached

Supercomputer - Very powerful and very big

Question 43

What are the units of computer data from smallest to largest?

Answer 43

> Bit - 1 (on) and 0 (off)
Byte - 8 bits to a byte/characterField - group of related characters/bytes (i.e. Name- Zip Code- Serial #)
Record - Group of related fields (i.e. Member name- address- phone number)
File - Group of related records (i.e. Membership directory)

Question 44

What is the duty of a design engineer?

Answer 44

Determine language used for a specific computer- on a computer-to-computer basis

Question 45

What are object programs?

Answer 45

Programs written in base computer language- not similar to English.

Question 46

How can source programs be recognized?

Answer 46

They are written in a language close to English.

Question 47

What is the purpose of a Compiler?

Answer 47

Takes Source language (English) and converts to Object (Computer) Language

Question 48

How does Online Analytical Processing work?

Answer 48

It uses a Data Warehouse to support management decision making.

Question 49

What is Data Mining?

Answer 49

Using artificial intelligence and pattern recognition to analyze data stores within a Data Warehouse.

Question 50

What is the purpose of online transaction processing?

Answer 50

To process a company’s routine transactions.

Question 51

What does an output control check for?

Answer 51

Checks to see if output data is valid- distributed and used in an authorized manner.

Question 52

What does a processing control check?

Answer 52

Checks if data processing produced proper output

Question 53

What is a hash total?

Answer 53

An INPUT CONTROL number- a meaningless sum of values included in the input.Example would be summing a list of SSNs to make sure the data is the same once entered as it was prior to input into the system.

Question 54

What is a validity check?

Answer 54

An INPUT CONTROL that checks to see if data in existing tables or files belongs in the set
For example- is there a # in an alpha-only field or a letter in a numeric-only field

Question 55

What is a limit check?

Answer 55

In INPUT CONTROL. Checks to see if numbers surpass a certain limit- i.e. in an age field is the number greater than 110.

Question 56

What is a check digit?

Answer 56

An INPUT CONTROL that adds an identification number to a set of digits - usually at the end

Question 57

What is a field check?

Answer 57

An INPUT CHECK that prevents invalid characters- i.e. checks for alphabetic letters in a SSN field

Question 58

What is a Hot Site?

Answer 58

A disaster recovery system where if the main system goes down- a Hot Site is ready to take over immediately.
Building, hardware, and backup tapes.
Few hours to 1/2 day to operate.

Question 59

What is a Cold Site?

Answer 59

If a main system goes down- a Cold Site will take time to get set up and running. 1 - 3 days.
Provides only infrastructure - building.
Does not have the equipment.

Question 60

What is the most common database language?

Answer 60

SQL - Structured Query Language

Question 61

What is a Data Definition Language?

Answer 61

DEFINES SQL Database

CONTROLS SQL Tables

Question 62

What is a Data Manipulation Language?

Answer 62

Queries SQL Database tables

Question 63

What is a Data Control Language?

Answer 63

Controls ACCESS to SQL Database

Question 64

What are the characteristics of a Relational Database?

Answer 64

Logical structure

Uses rows and columns similar to spreadsheet

Question 65

What are the characteristics of a Hierarchical Database?

Answer 65

Has various LEVELS

Uses TREES to store data

Question 66

What are the advantages of a database?

Answer 66

Data is more accessible

Reduced redundancy

Question 67

What are the disadvantages of a database?

Answer 67

Cost of installation

Skilled personnel required to maintain

Question 68

What are the components of a database?

Answer 68

Desktop client
Application Server
Database Server
Think: Your desktop computer runs applications and saves to a database

Question 69

What is Information Technology

Answer 69

It is a term relating to the development,installation, and maintenance of computers, applications systems, and the associated programs and telecommunications infrastructure.
It also includes the data stored and transmitted and the people working in the industry.
Today’s economy could not exist without IT. Information and technology requirements are specialized to each industry and business and require assessment. Integral to the needs assessment is an understanding of the nature of data, information, and systems.

Question 70

What are the components of IT?

Answer 70

Hardware
Software
Network
People
Data/Information

Question 71

What are the roles of Business Information Systems?

Answer 71

The primary roles are in Business Operations are:
> To process detailed data
> To provide info for decision making
> To provide info for strategy development
> To take order from customers

Question 72

What are the information systems viewed from a functional perspective? HAMS

Answer 72

Sales & marketing systems
Manufacturing & Production systems
Accounting & Finance systems
Human Resources systems

Question 73

What is the first step in data capture?

Answer 73

Capture the data pertaining to the transaction and enter the data into the system.
> A business event or transaction is necessary for the data capture process. (Can’t capture if didn’t happen)
> Capture through manual entries or automation devices
> Ensure data is accurate and complete, - uses well-designed input screens and auto-entry fields

Question 74

What are the functions performed on data?

Answer 74

> Collect
> Process
> Store
> Transform
> Distribute

Question 75

What is an Accounting Information System (AIS)?

Answer 75

A type of Management Information System (MIS) that processes accounting transactions.

Question 76

What do the objectives of an entity’s AIS include?

Answer 76

Transaction recorded must be:
> Valid
> Properly classified
> Properly valued
> Recorded in proper accounting period
> Properly presented with related information in the FS

Question 77

What are the 5 primary transaction cycles in an AIS?

Answer 77

> Revenue cycle
> Expenditure cycle
> Production cycle
> HR/Payroll cycle
> Financing cycle

Question 78

What are the sequence of events in an AIS?

Answer 78

> Transaction data is entered by end user or internet customer
Transactions are journalized and posted to ledgers
Trial balance is prepared
Adjustments, accruals, and corrections are recorded
Financial reports are produced

Question 79

The data processing cycle consists of 4 functional areas. What are they?

Answer 79

> Data input via manual source document input or electronic data capture.
Data storage, which includes the following methods of keeping data: journals and ledgers, coding, chart of accounts, and files.
Data processing (batch or OLRT)
Information output (documents, queries, and reports)

Question 80

What is an audit trail?

Answer 80

A well-designed AIS creates an audit trail for accounting transactions which allows a user to trace a transaction from a source foment to the ledger and from the ledger back to the source documents. This is particularly important for auditing. (directional testing)

Question 81

What is batch processing and its characteristics?

Answer 81

In batch processing, data (transactions) is processed in batches or groups with the database(s) updated on a periodic (hourly, daily, monthly) basis. There is always some kind of delay, however short, in batch processing.
> Data held- updates multiple files all at once
> Leaves a better audit trail
> Uses Grandfather-Father-Son backup (3 levels of backup kept in 3 locations)

Question 82

What is OLRT - Online, Real-Time Processing?

Answer 82

With OLRT processing, there is instantaneous processing and updating of database(s).
OLRT systems require random access storage devices, whereas batch processing systems do not.
Generally, companies have to pick OLRT or batch. They may use different processes for different functions, but its really a binary choice.

Question 83

What is a centralized vs. decentralized distributed processing?

Answer 83

Centralized maintains all data and performs all processing in a central location. Decentralized are spread over more than one processor or locations

Question 84

What are the advantages of centralized processing?

Answer 84

> Better security

> consistency

Question 85

What are the disadvantages of centralized processing?

Answer 85

> High transmission costs
Increased processing power/storage for central processor
Reduction of local accountability
Bottlenecks at busy times
Delay in réponse time to remote locations
Increased vulnerability to problems occurring at the central location.

Question 86

What is End-User Computing (EUC)?

Answer 86

Functional end users who perform their own information processing activities with hardware, software and professional resources provided by the organization. - do it yourself - (excel)

Question 87

What are the basic types of reports?

Answer 87

Periodic - produced each month, day, hour
Exception - triggers when outside of parameters
Demand - produced when requested - push button
Ad Hoc - Query - Sales by month or region
Push Report - Spits out without request. log in computer and report shows up in screen
Dashboard-Style - At a glance report - graph

Question 88

What is the role of IT in Business Strategy

Answer 88

Technology is a core input to the development of strategy.
Technology evolves and due t the speed at which changes, strategy development must be a continual process.
Technology plays an important role in enabling the flow of information in the organization, including information directly relevant to enterprise risk management across strategy setting and the whole organization.

Question 89

What are boundary protection?

Answer 89

The primary purpose is to prevent mixing of data on a magnetic disk or storage unit.

Question 90

What are the firewall methodology and what do they do?

Answer 90

Can be deeded into several different categories, and they can be used individually or combined in a specific product.
> Packet Filtering is the simplest type. It examines data as it passes through the firewall
> Circuit Level - Allows data to pass only when requested by an internal computer.
> Application Level Gateways or “Proxies” - examine data coming into the gateway in a more sophisticated fashion. Proxies are more secure, but can also be slow.

Question 91

Which activity should be taken to reduce the risk of incorrect processing in a newly installed computerized accounting system?

Answer 91

Independently verify the transactions.

Question 92

lists several Data Validation Edits and Controls

Answer 92

Sequence check
Limit check
Range check
Validity check - comparison of input to a list of valid items. (detect transposition errors)
Reasonableness check - would not allow invalid date to be accepted
Table lookups
Existence check
Key verification
Check digit - adds an identification number to a set of digits - usually at the endCompleteness check
Duplicate check
Logical Relationship check

Question 93

What does Access Control Software does?

Answer 93

It is a preventive control designed to prevent a misstatement from occurring. Access control software prevens unauthorized individuals from gaining access to a system or application and therefore prevents unauthorized transactions or changes in data.

Question 94

Which model evaluate the sophistication of IT processes?

Answer 94

Maturity Models rates from maturity level of nonexistent (0) to optimized (5)

Question 95

Cite internet based tools for collaboration.

Answer 95

E-mail,
Videoconferencing
Groupware or collaboration systems
NOT EDI