IT

Question 1

Sequence of events in an AIS logical order

Answer 1

1. Transaction data from source doc. is entered into AIS by end user
2. Original paper source documents are filed
3. These transactions are recored in the appropriate journal
4. Transactions are posted to the vernal and subsidiary ledgers.
5. Trial balances are prepared.
6. Financial reports are generated.

Question 2

Component of information technology (Bsns Info. System)

Answer 2

1. Hardware
2. Software
3. Network
4. People in IT dept.
5. Data/infor.

Question 3

Batch processing

Answer 3

• input doc/trans are collected and grouped.
• always a time delay (slower)
• Create a transaction files ->update master files
• Comparing manual and computer generated batch control totals

Question 4

Online real-time processing

Answer 4

• Immediate processing (fast)

- used in networked systems

Question 5

What is Centralized processing? What is its advantage n disadvantage?

Answer 5

• maintain and perform all data processing at a central location.
• Adv: enhanced security; consistent processing
• Disadv: high cost, increase need for processing power and data storage, reduction in local accountability, bottlenecks and larger delay in response time.

Question 6

Decentralized / distributed processing

Answer 6

Occurs when computing power, applications, work is spread out over many locations.
-> reduce burden on central computers.

Question 7

Periodic Scheduled reports

Answer 7

Traditional reports

make available on regular basis to end user

Question 8

Exception report

Answer 8

Produced when a specific condition or exception occurs

Question 9

Demand reports / Pull reports

Answer 9

infor prepared on demand. similar to response report

Question 10

Ad hoc report

Answer 10

a report that does not currently exist but that needs to be created on demand without having to get a software developer involved.

Question 11

Push report

Answer 11

report that push to computer, cell phones…

Question 12

Dashbard style report

Answer 12

used by organizations to present summary info. necessary for management action.

Question 13

Business Information Systems (BIS) performing the following function

Answer 13

• collect
• process
• store
• transform
• distribute

Question 14

Decision Support System (DSS)

Answer 14

• Assists managers in making daily decisions (interactive support)
• DSS is an extension of an MIS
• Sometimes called expert systems (ES)

Question 15

Management information systems (MIS)

Answer 15

• Assist decision making (similar to DSS)

- Methods of processing: Integrated; Automated; Manual

Question 16

Executive Information Systems (EIS)

Answer 16

• Only used by top managers

- assist in strategic , no daily decision making.

Question 17

Transation processing systems (TPS)

Answer 17

-process and record the routine daily trans.

Question 18

System Development Life Cycle (SDLC)

Answer 18

- 5-step process: A DITTO
A - System Analysis & planning
D - Design (Conceptual design, Physical design)
I  - Implementation and conversion
T - Training, 
T - Testing
O - Operations and maintenance

Question 19

Control Objective For Information Related Technology (COBIT) - Objectives

Answer 19

• Business objectives:
  + Effective decision support
  + Efficient trans. processing
  + Compliance wt reporting requirement and security.

- Governance objectives: 
  \+ Strategic alignment: btw IT value and customer satisfactory
  \+ Value delivery
  \+ Resource management
  \+ Risk management
  \+ Performance measurement.

Question 20

COBIT - Information criteria

Answer 20

ICE RACE 
I - Integrity : Accuracy and completeness of the info
C - Confidentiality
E- Efficiency
R- Reliability 
A - Availability
C - Compliance
E - Effectiveness

Question 21

COBIT Domains & process

Answer 21

PO AIDS ME

Direct PO Plan & Organize
Solution AI Acquire & Implement
Service DS Deliver & Support
Ensure direction follow ME Monitor & Evaluate

Question 22

General controls include

Answer 22

1. Information systems management controls.
2. Security management controls
3. IT infrastructure controls
4. Software acquisition, development, and maintenance controls

Question 23

Application controls provide assurance about

Answer 23

1. accuracy
2. completeness
3. Validity
4. authorization

Question 24

Types of Internal Controls

Answer 24

1. Preventive Controls: control prior to an error or irregularity ->prevent
2. Detective Controls: to discover problems as soon as they arise
3. Corrective Controls: identify the cause of the problems, corrections and modification of system to minimize future errors.

Question 25

Output controls includes

Answer 25

1. user review of output
2. reconciliation procedures
3. external data reconciliation
4. output encryption

Question 26

Processing controls includes

Answer 26

1. Data matching
2. Recalculate batch total
3. Cross footing and zero balance test
4. Write protection mechanisms.

Question 27

Segregation of duties in IT

Answer 27

• separate authorizing, recording and custody of assets (ARC)
• normally separate systems analysts, computer programmers, operators and security admin.
• System analysts and programmer can be combined.

Question 28

What are System Analysts in charge of?

Answer 28

SYSTEMS ANALYSTS are in charge of HARDWARE.

Question 29

What are Computer Programmers in charge of?

Answer 29

COMPUTER PROGRAMMERS are in charge of SOFTWARE.

Question 30

What are System Programmers in charge of?

Answer 30

SYSTEM PROGRAMMERS are in charge of maintaining the OPERATING SYSTEM.

Question 31

What are Security Administrators in charge of?

Answer 31

SECURITY ADMINISTRATORS are in charge of SECURITY of the entire computer system.

Question 32

What are Database Administrators in charge of?

Answer 32

DATABASE ADMINISTRATORS are in charge of DATA integrity for the entire computer system.

Question 33

What are 6 Key Elements of Operational Effectiveness?

Answer 33

1) Strategic Master Plan= Developed and updated yearly.
2) Project Controls = Shows how a project will be completed.
3) Data Processing Schedule = Data processing tasks should be organized according to a data processing schedule.
4) Steering Committee= Should be formed to guide and oversee systems development and acquisition.
5) System Performance Measurements= systems MUST be assessed using system performance measurements.
6) Post Implement Review= Determine if anticipated benefits were achieved.

Question 34

What is the ascending hierarchy of data in a system?

Answer 34

Character - Field - Record - File

Question 35

Son-father-grandfather concept

Answer 35

• backup file system
• most recent = son. second most recent = father. preceding file is grandfather.
• reading previous file, recording trans, create a new updated master file.

Question 36

Program modification controls

Answer 36

-control that attempt to prevent changes by unauthorized personnel , and track program changes.

Question 37

Types of computer security polices (4)

Answer 37

1. Program level policy: used for creating a management-sponsored computer security program
2. Program-framework policy: establishes the overall approach to computer security.
3. Issue-specific policy: addresses specific issues of concern to org.
4. System-specific policy: focuses on policy issues that management has decided for a specific system

Question 38

3 level model for system security policy

Answer 38

1. security objectives
2. Operational security
3. policy implementation.

Question 39

What are 5 types of technology Risks?

Answer 39

1. Strategic Risk: risk of choosing inappropriate technology
2. Operating risk: risk of doing the right things in the wrong way
3. Financial risk: Risk of having financial resource lost, wasted
4. Information risk: lost of data integrity, hackers
5. Specific risk: error, intentional acts, disasters.

Question 40

What are 4 advantages of EDI?

Answer 40

4 Advantages of EDI (Electronic Data Interchange) are:

1) Speed.
2) Less paper flow.
3) Less manual keying.
4) Lower cost to process the transactions themselves.

Question 41

What are 5 Costs associated with EDI (Electronic Data Interchange)?

Answer 41

5 Costs associated with EDI (Eletronic Data Interchange) are:

1) Legal=Set up agreements between companies.
2) Hardware.
3) Translation software (data MUST be translated into specific EDI software format).
4) Data Transmission= a Value Added Network (VAN) is required which costs more $$.
5) Security, monitoring and control (There MUST be monitoring).

Question 42

What are 6 types of Databases?

Answer 42

6 Types of Databases are:

1) Operational Database= Customer and personal databases for example.
2) Analytical Database= Summary data related to sales and the marketplace.
3) Data Warhehouses= Collections of sales and inventory data from multiple years.
4) Distributed Database= physically distributed on a local or remote hardware such as intranet or the internet.
5) End-User= email for example.
6) Relational = two-dimensional data arrangement with records linked by keys.

Question 43

What is a Database Management System?

Answer 43

A Database Management System (DBMS) controls the development,use, and maintenance of the databases used by the organization.

Question 44

What are 6 Advantages of a Database Management System (DBMS)?

Answer 44

6 Advantages of a Database Management System are;

1) Reduced data redundancy and inconsistency.
2) Data Independence.
3) Increased Data standardization.
4) Improved data security.
5) Improved data availability. (Via networks)
6) Direct Access.

Question 45

What are 2 Disadvantages of a Database Management System (DBMS)?

Answer 45

2 Disadvantages of a Database Management System (DBMS) are:

1) The need fo highly specialized personnel ( Database Administrators are expensive).
2) High Cost of purchase and maintenance (maintenance always has to be considered.)

Question 46

What are 3 Recovery Alternatives for Disaster Reovery and Business Continuity?

Answer 46

1) Cold Site = No Equipment but has power (It takes a few days to get operating).
2) Hot Site = Has equipment and operating system ready to go in the event of a disaster.
(It takes a few hours only to get operating).
3) Warm Site = In between having what they totally need and basic power. (It takes a few hours only to get operating).

Question 47

What are 3 Types of Backups?

Answer 47

3 Types of Backup are:

1) Full Backup = exact copy of entire database.
2) Incremental Backup = copying only data that has changed since last backup.
3) Differential Backup = copies ALL changes made since the last FULL backup.

Question 48

What is Enterprise Resource Planning system?

Answer 48

A system that integrates multiple functional area of business operation.

Question 49

What does three-tier architecture consist of ?

Answer 49

Desktop client - Application - Database

Question 50

What are 5 Steps in Developing a Disaster Recovery Plan?

Answer 50

1) Assess risks.
2) Identify mission-critical applications.
3) Determine responsibilities of the personnel.
4) Develop a plan.
5) Test the plan.

Question 51

What is an advantage of using the Internet for electronic commerce rather than a tradtional Value Added Network(VAN)?

Answer 51

The Internet permits EDI transactions to be sent to trading partners as transactions occur.

Question 52

What is “MIPS” as it refers to computer processing power

Answer 52

MIPS
M=Millions
I= Instructions
P=Per
S=Second,

Question 53

What does a Database Administrator do?

Answer 53

A Database Administrator controls the database, NOT THE DATA, and duties generally include design of the firm’s database, maintaining security measures, and controlling data structure.

Question 54

What is Mapping?

Answer 54

Mapping= The process of determining the correspondence between elements in a company’s terminology and elements in standard EDI terminology.

Once the mapping has been completed, translation software can be developed to convert transactions from one format to the other.

Question 55

A local area network (LAN) is best described as a(n):

Answer 55

A local area network (LAN) is a computer network that connects computers of all sizes, workstations, terminals, and other devices within a limited proximity.

Question 56

Supply Chain Management (SCM)

Answer 56

Supply Chain Management (SCM) is concerned with four important characteristics for every sale: what, when and where the goods were delivered and how much the goods cost.

Question 57

what is A business continuity plan?

Answer 57

A business continuity plan is broader than a disaster recovery plan. It provides for continuation of all areas of the business (e.g. manufacturing operations), not just for recovery of the management information systems.

Question 58

Which type of security policy might prescribe the need for information security and may delegate the creation and management of the program to a role within the IT department?

Answer 58

Program-level policy describes information security and assigns responsibility for achievement of security objectives to the IT department.

Question 59

XBRL

Answer 59

XBRL, the acronym for eXtensible Business Reporting Language, is derived from XML (eXtensible markup language).

XBRL is an open, royalty-free, Internet-based information standard for business reporting of all kinds. XBRL labels data so that they are provided with context that remains with them and brings conformity to the names by which they are recognized by disparate software.