← Back to exam page

IIA-CIA-Part3 Certified Internal Auditor - Part 3, Business Analysis and Information Technology

Loading demo links...

Showing 13–15 of 15 questions

Question 13

Which of the following is a cybersecurity monitoring activity intended to deter disruptive codes from being installed on an organization's systems?

Select an option, then click Submit answer.

  • Boundary defense.

  • Malware defense.

  • Penetration tests.

  • Wireless access controls.
Question 14

According to the International Professional Practices Framework, internal auditors who are assessing the adequacy of organizational risk management processes should not:

Select an option, then click Submit answer.

  • Recognize that organizations use different techniques for managing risk.

  • Seek assurance that the key objectives of the risk management processes are being met.

  • Determine and accept the level of risk for the organization.

  • Treat the evaluation of risk management processes differently from the risk analysis used to plan audit engagements.
Question 15

A manager has difficulty motivating staff to improve productivity, despite establishing a lucrative individual reward system. Which of the following is most likely the cause of the difficulty?

Select an option, then click Submit answer.

  • High degree of masculinity.

  • Low uncertainty avoidance.

  • High collectivism.

  • Low long-term orientation.