Weekend Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

IIA-CIA-Part3-3P Exam Dumps - IIA CIA Questions and Answers

Question # 34

Which of the following control features consists of a set of authorization codes that distinguishes among actions such as reading, adding, and deleting records?

Options:

A.

Internally encrypted passwords

B.

System access privileges.

C.

Logon passwords

D.

Protocol controls.

Buy Now
Question # 35

Which of the following is a project planning methodology that involves a complex series ot required simulations to provide information about schedule risk?

Options:

Buy Now
Question # 36

The process of scenario planning begins with which of the following steps?

Options:

A.

Determining the trends that will influence key factors in the organization's environment.

B.

Selecting the issue or decision that will impact how the organization conducts future business.

C.

Selecting leading indicators to alert the organization of future developments.

D.

Identifying how customers, suppliers, competitors, employees, and other stakeholders will react.

Buy Now
Question # 37

Which of the following is an example of a phishing attack?

Options:

A.

An employee receives an email that appears to be from the organization's bank, though it is not. The employee replies to the email and sends the requested confidential information.

B.

An organization's website has been hacked. The hacker added political content that is not consistent with the organization's views.

C.

An organization's systems have been compromised by malicious software. The software locks the organization's operating system until d ransom is paid.

D.

An organization's communication systems have been intercepted. A communication session is controlled by an unauthorized third party.

Buy Now
Question # 38

Which of the following IT operational areas is responsible for the integrity of data flow within an

organization?

Options:

A.

Network

B.

Database

C.

Operating system

D.

Server

Buy Now
Question # 39

Which of the following best describes a detective control designed to protect an organization from cyberthreats and attacks?

Options:

A.

A list of trustworthy good traffic and a list of unauthorized blocked traffic.

B.

Monitoring for vulnerabilities based on industry intelligence

C.

Comprehensive service level agreements with vendors.

D.

Firewall and other network penmeter protection tools.

Buy Now
Question # 40

Which of the following is the best example of IT governance controls?

Options:

A.

Controls that focus on segregation of duties, financial and change management

B.

Personnel policies that define and enforce conditions for staff in sensitive IT areas

C.

Standards that support IT policies by more specifically defining required actions

D.

Controls that focus on data structures and the minimum level of documentation required

Buy Now
Question # 41

Which of the following is the first step an internal audit activity should undertake when executing a data analytics process?

Options:

A.

Conduct a risk assessment regarding the effectiveness of the data analytics process.

B.

Analyze possible and available sources of raw data

C.

Define the purpose and the anticipated value

D.

Select data for cleaning and normalization procedures.

Buy Now
Question # 42

While reviewing the contracts for a large city, the internal auditor learns that the organization contracted to perform trash collection is paid based on the number of bins emptied each week as a result, the city has minimal control over payments Which of the following actions should the auditor recommend to give the city greater control over payments?

Options:

A.

Change the contract so payment is based on the distances traveled by the contractor during collection.

B.

Renegotiate a lump-sum contract when the contract is up for renewal

C.

Assign a city employee to verify the number of bins emptied each day

D.

Require that the contractor provide supervisory review of the number of bins emptied each day

Buy Now
Question # 43

A rapidly expanding retail organization continues to be tightly controlled by its original small management team. Which of the following is a potential risk in this vertically centralized organization?

Options:

A.

Lack of coordination among different business units.

B.

Operational decisions are inconsistent with organizational goals.

C.

Suboptimal decision-making.

D.

Duplication of business activities.

Buy Now
Exam Code: IIA-CIA-Part3-3P
Exam Name: CIA Exam Part Three: Business Knowledge for Internal Auditing
Last Update: Feb 22, 2025
Questions: 488
IIA-CIA-Part3-3P pdf

IIA-CIA-Part3-3P PDF

$25.5  $84.99
 Add to Cart
IIA-CIA-Part3-3P Engine

IIA-CIA-Part3-3P Testing Engine

$28.5  $94.99
 Add to Cart
IIA-CIA-Part3-3P PDF + Engine

IIA-CIA-Part3-3P PDF + Testing Engine

$40.5  $134.99
 Add to Cart