Deck 7: Auditing Information Technology-Based Processes

A)Test data method
B)Embedded audit module
C)Integrated test facility
D)Parallel simulation

A)An audit program should be standardized
B)The audit program should be completed by the client company before the audit planning stage begins.
C)An audit program should be developed by the internal auditor during the audit's completion/reporting phase.
D)An audit program establishes responsibility for each audit test by requiring the signature or initials of the auditor who performed the test.

A)Tests of controls
B)Penetration tests
C)Substantive tests
D)Rounding errors tests

A)Preparation of a client's financial statements and accompanying notes
B)Advising client management as to the applicability of a new accounting standard
C)Proposing adjustments to a client's financial statements
D)Advising client management about the presentation of the financial statements

A)Examine the consistency of data maintained on computer files
B)Perform audit tests of multiple computer files concurrently
C)Verify the processing logic of operating system
D)Process test data against master files that contain both real and fictitious data

A)Penetration tests
B)Hash totals
C)Field checks
D)Program tracing

A)Procedures have been updated regularly.
B)Financial statement amounts are accurately stated.
C)Internal controls are functioning as designed.
D)Collusion is taking place.

A)Test data method
B)Embedded audit module
C)Integrated test facility
D)Parallel simulation

A)The time involved in testing processing controls is significant.
B)The cost involved in testing processing controls is significant.
C)A portion of the audit trail is not tested.
D)The technical expertise required to test processing controls is extensive.

A)General Standards
B)Standards of Fieldwork
C)Standards of Information Systems
D)Standards of Reporting

A)Financial statement audits
B)Operational audits
C)Regulatory audits
D)Compliance audits

A)A transaction is recorded in the proper period.
B)A transaction actually occurred (i.e., it is real).
C)A transaction is properly presented in the financial statements.
D)A transaction is supported by detailed evidence.

A)Document the auditor's understanding of the client company's internal controls
B)Search for weaknesses in the operation of the client company's internal controls
C)Perform tests of controls to evaluate the effectiveness of the client company's internal controls
D)Determine whether controls are appropriately operating to prevent or detect material misstatements

A)Obtain an understanding of the client's risk assessment process
B)Identify specific internal control activities that are designed to prevent fraud
C)Evaluate the rea
D)Test the timely cutoff of cash payments and collections

A)Procedures used to gather evidence to support the accuracy of a client's financial statements
B)Measures of the quality of an auditor's conduct carrying out professional responsibilities
C)Professional pronouncements issued by the Auditing Standards Board
D)Rules acknowledged by the accounting profession because of their widespread application

A)Identify possible circumstances and events that may affect the business
B)Establish policies and procedures to carry out internal controls
C)Identify and capture information in a timely manner
D)Review the quality of internal controls throughout the year

A)Due professional care
B)Competence
C)Independence
D)A complex underlying body of professional knowledge

A)Governmental auditors
B)CPAs
C)Internal auditors
D)IT auditors

A)Management's geographic location is far from the
B)The information is collected and prepared by per
C)The information relates to business activities that are not well understood by those who collect and summarize the information for decision makers.
D)The information has been tested by internal auditors and a CPA firm.

A)Audit
B)Investigation
C)Financial statement examination
D)Control test

A)Public auditors
B)Governmental auditors
C)Certified Public Accountants
D)Internal auditors

A)Compliance audit
B)Operational audit
C)Internal audit
D)External audit

A)Audited information
B)Remote information
C)Complexity of data
D)Preparer motive

A)IT auditor
B)Government auditor
C)Certified Public Accountant
D)Internal auditor

A)GAAP audit
B)Financial statement audit
C)Compliance audit
D)Fair application audit

A)Compliance audits
B)Financial statement audits
C)IT audits
D)Operational audits

A)The lead audit partner is the sister-in-law of the client's VP of Accounting.
B)One of the auditors owns stock in a competitor of the client.
C)One of the auditors is the golf partner of the client's CEO.
D)The lead audit partner owns stock in the client.

A)The lack of CPA independence
B)The volume and complexity of underlying data
C)The motive of the preparer
D)The remoteness of information

A)IT auditor
B)Government auditor
C)Certified Public Accountant
D)Internal auditor

A)Compliance audit
B)Operational audit
C)Information audit
D)Financial statement audit

A)IT auditor
B)Government auditor
C)Certified Public Accountant
D)Internal auditor

A)Compliance services
B)Assurance services
C)Substantive services
D)Operational services

A)Efficiency audit
B)Effectiveness audit
C)Compliance audit
D)Operational audit

A)Consideration of risk
B)Consideration of information fairness
C)Design and performance of audit tests
D)Audit procedures used

A)Sample risk
B)Data risk
C)Audit trail risk
D)Information risk

A)Neutral
B)Well-informed
C)Materially invested
D)All of the above

A)Having no knowledge of the company or the company management
B)By owning stock of a similar company
C)Having the ability to influence the client's decisions
D)Being married to a stockbroker

A)Objectivity
B)Neutrality
C)Professional skepticism
D)Competence

A)Effectiveness of the internal controls of the company
B)Selection of the proper GAAP when preparing financial statements
C)Proper application of GAAS during the examination
D)Accuracy and completeness of the information

A)1=audit objectives; 2=management's assertions
B)1=audit tests; 2=audit objectives
C)1=audit tests; 2=audit evidence
D)1=audit tests; 2=management's assertions

A)Auditing Standards Board
B)Public Company Accounting Oversight Board
C)International Audit Practices Committee
D)Information Systems Audit and Control As

A)General Standards
B)Operating Standards
C)Fieldwork Standards
D)Reporting Standards

A)International Systems Audit and Control As
B)Auditing Standards Board
C)Public Company Accounting Oversight Board
D)International Auditing and Assurance Standards Board (IAASB)

A)Information users often do not have the time or ability to verify information themselves.
B)It may be difficult for decision makers to verify information contained in a computerized accounting system.
C)Both of the above
D)Neither of the above

A)Generally accepted accounting standards
B)General accounting and auditing practices
C)Generally accepted auditing practices
D)Generally accepted auditing standards

A)Financial Statements
B)Management Assertions
C)External Audit
D)Presentation and Disclosure

A)General Standards
B)Operating Standards
C)Fieldwork Standards
D)Reporting Standards

A)Valuation and Allocation
B)Existence
C)Rights and Obligations
D)Classification and Presentation

A)Physical evidence risk
B)Loss of audit trail visibility
C)Transaction summary chart
D)Lack of evidence view

A)Audit Program
B)Audit Objective
C)Management Assertion
D)General Objectives

A)Auditing Standards Board
B)Public Company Accounting Oversight Board
C)International Audit Practices Committee
D)Information Systems Audit and Control As

A)General Standards
B)Operating Standards
C)Fieldwork Standards
D)Reporting Standards

A)Industry Guidelines
B)PCAOB
C)ASB
D)ASACA

A)System failure
B)Database destruction
C)Programmer incompetence
D)Environmental damage

A)General Standards
B)Basic Standards
C)Standards of Fieldwork
D)Standards of Reporting

A)General Standards
B)Operating Standards
C)Fieldwork Standards
D)Reporting Standards

A)Public Company Accounting Oversight Board
B)Auditing Standards Board
C)Certified Fraud Examiners
D)International Auditing and Assurance Standards Board

A)Computer controls can compensate for the lack of manual controls
B)Loss of audit trail view
C)Increased internal controls risks
D)Fewer opportunities to authorize and review transactions

A)Auditing Standards Board
B)Public Company Accounting Oversight Board
C)International \Audit Practices Committee
D)Information Systems Audit and Control As

A)Accurate in terms of dollar amounts and quantities
B)Supported by detailed evidence
C)Real
D)Correctly summarized

A)Risk
B)Materiality
C)Substantive
D)Sampling

A)Hash total
B)Batch total
C)Validation check
D)Sequence verification total

A)Substantive testing verifies whether information is correct, whereas control tests determine whether the information is managed under a system that promotes correctness.
B)Substantive testing determines whether the information is managed under a system that promotes correctness, whereas control testing verifies whether information is correct.
C)Substantive testing goes further in depth into the internal controls of a company, whereas controls testing just identifies which controls need further review.
D)Substantive testing identifies which controls need further review, whereas controls testing goes further in depth into the internal controls of a company.

A)Proceed to the audit completion in the reporting phase
B)Re-evaluate the audit risk in the planning phase
C)Re-perform detailed tests of balances
D)Re-perform an internal controls systems analysis

A)Risk
B)Materiality
C)Control tests
D)Sampling

A)Auditing through the system
B)Auditing around the system
C)Computer assisted audit techniques
D)Auditing with the computer

A)Auditing with the computer
B)Auditing through the computer
C)Auditing around the computer
D)Auditing in the computer

A)Supporting documents are available in both electronic and paper form.
B)The auditor does not require evaluation of computer controls.
C)The auditor wants to test computer controls as a basis for evaluating risk and reducing the amount of substantive audit testing required.
D)The use of the IT system has a low impact on the conduct of the audit.

A)Tests of controls
B)Substantive tests
C)Audit completion / reporting
D)Audit planning

A)Interviewing key members of the accounting and IT staff
B)Observing policies and procedures
C)Review IT user manuals and systems
D)Preparing memos to summarize their findings

A)Consider the effects of computer processing on the audit
B)To assist in testing the automated processes
C)Both of the above
D)Neither of the above

A)Physical examination of assets or supporting documentation
B)Observing activities
C)Adequate planning and supervision
D)Analyzing financial relationships

A)Substantive tests
B)Audit planning
C)IT auditing
D)Test of controls

A)The white box approach
B)The black box approach
C)Computer-assisted audit techniques (CAATs)
D)The gray box approach

A)Planning
B)Evidence audit
C)Tests of controls
D)Substantive tests

A)Auditing through the system
B)Auditing around the system
C)Computer-assisted audit techniques
D)Auditing with the computer

A)Tests of controls
B)Substantive tests
C)Audit completion
D)Audit evidence

A)General controls
B)Specific controls
C)Input controls
D)Application controls

A)How transactions are entered into the computer
B)How financial statement are printed from the computer
C)How nonstandard journal entries and adjusting entries are initiated, recorded, and processed
D)How standard journal entries are initiated, recorded, and processed