CPE Quiz #
88
Based on Information Systems Control Journal Volume 1, 2003
A passing score of 75 percent qualifies for one (1) hour of CISA/CISM/CGEIT Continuing Professional Education (CPE) Credit
Your results will appear in a new window.
Enter your name below so it displays on the quiz results page:
Name:
Hamaker Article1. Enterprise governance, a concept articulated and advanced by the Information Systems Audit and Control Foundation, is primarily associated with the leadership and organizational structures that align IT investments with the overall goals of the enterprise.
2. Corporate governance, as defined by the Organisation for Economic Co-operation and Development, is based on the core principles of shareholder rights, independence, accountability and disclosure, and board roles and responsibilities.
3. Surveys by McKinsey and Company reveal that institutional investors are willing to pay a premium for shares in a company that is known to be well governed. However, the premium in 2000 is less than it was in 1996.
4. Overall benefits of good governance cited by the author include: maximizes revenues, minimizes risk and reduces expenses.
Scammell Article5. Challenges for most security architects (SecArch) are that they do not own the infrastructure, yet they are responsible for protecting it. A challenge is balancing responsibility and accountability, because SecArchs often cannot make decisions that bind system owners.
6. The author identifies examples of critical SecArch questions related to product selection, such as Windows vs. UNIX decisions for web servers.
Kneer Article7. No government-mandated IT governance framework yet exists in the public or private sector, but the author believes that such frameworks soon will be legislated.
8. Examples of real-time auditing techniques or monitors include OnStar's automatic calling when airbags are deployed, autopilots on airplanes and triggers within the Oracle9i database environment that can launch programs or processes.
9. Examples of financial statement accounts that have the potential to be audited in real time include inventory, units shipped and accrued liabilities.
Nehmer Article10. Six preconditions are required to meet the definition of continuous auditing as defined in an AICPA and CICA research report.
11. Reliable information systems are required for continuous auditing. Reliable systems are those that are highly automated and include primary controls that collect data on the system.
Alles, Kogan and Vasarhelyi Article12. Continuous auditing makes fraud detection relatively simple because triggers can be developed to detect instantly erroneous transactions as they are recorded.
13. The authors advocate a continuous assurance "black box" that would permit monitoring by a third party, independent of the firm's external auditor.
Poon, Li and Tak Yu Article14. Among firms that use Internet financial reporting (IFR) in the UK, US and Ireland, there is a consistent standard for what information is reported and how the data are accessed from the company's investor information web site.
15. A benefit of putting a firm's annual and/or interim reports on its web site is that it requires minimal effort for investors to download the information onto spreadsheets, especially since ubiquitous PDF files are the most commonly used file format.
Moody and Serepca Article16. Federal regulations require employees of federal agencies to review each incoming and outgoing e-mail to determine whether it is a federal record that must be preserved.
|
Your results will appear in a new window.
|
Please note: This quiz requires a JavaScript-enabled browser.
If the quiz is not displayed above, you either do not have a browser which
supports JavaScript or JavaScript support has been disabled.
|
|
|