Other Areas (other 25%) Flashcards

1
Q

Users delegated to run the internal audit department to make decisions regarding the audit process

A

Audit Administrators

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Users with the responsibility to plan, conduct, and manage audit engagements

A

Audit Managers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Those users that conduct Control Tests and other tasks on behalf of an audit engagement

A

Internal Auditors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Four types of child tasks of an Engagement

A

Walkthrough
Control Test
Interview
Activity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Can an Audit activity generate tasks?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Performs a Design and/or operation test to determine overall effectiveness of a control

A

Control Test

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Data gathering task often used by auditors to learn a process or find and corroborate audit evidence

A

Interview

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Establishes the reliability of an organization’s internal control over a procedure or process.

A

Walkthrough

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

A generic task to track other activities that occur during Engagements

A

Activity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Subtask of an audit task

A

Activity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Three interview types

A

Structured
Unstructured
Mixed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Application used to track audit

A

Audit Engagement Workbench

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Generic audit test that applies to Control Objectives

A

Test Template

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Specific audit test that applies to a control

A

Test Plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Engagement Lifecycle

A
Scope
Validate
Fieldwork
Awaiting Approval
Follow-up
Closed
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

A __________ is a specific audit test of the design and operating effectiveness of a single control

A

Test Plan

Test plans are used to generate Control Tests during engagements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Control test lifecycle

A

Open
Work in Progress
Review
Close

18
Q

What is true about Control Effectiveness

A

Both Design Effectiveness and Operation Effectiveness must be effective for Control Effectiveness to be marked Effective

19
Q

Map authoritative sources to policies, controls, and risks

A

P&C

20
Q

Automate and manage policy lifecycles

A

P&C

21
Q

Continuously monitor for compliance

A

P&C

22
Q

Internal goals and objectives

A

P&C

23
Q

external legislation and regulations

A

P&C

24
Q

establish controls and control owners

A

P&C

25
Q

Prepare attestations and indicators

A

P&C

26
Q

Continuously monitor risk exposure

A

Risk Management & Advanced Risk

27
Q

prioritize critical risks

A

Risk Management & Advanced Risk

28
Q

reduce mediation time

A

Risk Management & Advanced Risk

29
Q

develop risk assessments and response procedures

A

Risk Management & Advanced Risk

30
Q

measure risk exposure and improvements

A

Risk Management & Advanced Risk

31
Q

Page 16 for frameworks

A

Page 16 for frameworks

32
Q

GRC: Profiles (Terms)

A

Entity
Indicator
Issue

33
Q

Alternative Names: Control Objective

A

Control

Control Template

34
Q

Alternative Names: Entity

A

Scope Definition
Scope Object
Target
Profile

35
Q

Alternative Names: Entity Type

A

Entity Group

36
Q

Alternative Names: Control

A

Control Instance

37
Q

Alternative Names: Risk Statement

A

Risk Template

38
Q

Alternative Names: Issue

A

Finding

39
Q

Page 23 - Application Menus and Modules

A

Application Menus and Modules

40
Q

Page 24 - Store Apps and Plugins

A

Store Apps and Plugins

41
Q

What’s included with SOX content pack

A
SOX Policies
Pre-defined entities and entity types
COs and Risk Statements
Controls & Risks
Test Templates and Test Plans
SOX Audit and Audit Tasks
Indicators
SOX Control Attestation Templates
Reports & dashboards