•What is the formula for the audit risk model?
A) AR = IR x CR x DR
B) AR = DR x CR x IR
C) AR = IR / CR / DR
D) AR = DR / CR / IR

•What is the main benefit of IT outsourcing?
A. Reduced security
B. Improved core business processes
C. Increased IT costs
D. Loss of strategic advantage

Tungkol sa anong parte ng katawan ang sikat na impromtu spoken poetry ng social media personality na si Kween Yasmin? 

•What is the relationship between general controls, application control, and financial data integrity?
A) General controls are specific to financial data integrity, while application controls are related to operational efficiency
B) General controls apply to all systems and are necessary to support the functioning of application controls for accurate financial reporting
C) Application controls are focused on fraud audits, while general controls are focused on financial audits
D) General controls are only applicable to internal audits, while application controls are only applicable to external audits

•Which of the following is NOT a risk associated with Distributed Data Processing (DDP)?
A. Operational inefficiencies
B. Hardware and software incompatibility
C. Destruction of audit trails
D. Increased security measures

•What is the primary function of internal auditing within an organization?
A) To conduct fraud audits
B) To perform compliance audits
C) To examine and evaluate activities within the organization
D) To assist external auditors in financial audits

•What is the main objective of IT governance controls?
A. To increase risk
B. To reduce investments in IT resources
C. To ensure the security of an organization’s computer facilities
D. To decrease stakeholder participation

•Which of the following is NOT one of the three IT governance issues addressed by SOX and COSO?
A. Organizational structure of the IT function
B. Disaster recovery planning
C. Computer center operations
D. Human resources management

•What is a key feature of a disaster recovery team?
A. They should be inexperienced in their areas
B. They should not have assigned tasks
C. They should be experts in their areas
D. They should not participate actively

•What is a risk inherent to IT outsourcing?
A. Vendor exploitation
B. Increased security
C. Reduced costs
D. Enhanced strategic advantage

•Who should be involved in identifying critical applications in a disaster recovery plan?
A. Only user departments
B. Only accountants
C. Only auditors
D. User departments, accountants, and auditors

•What is the purpose of disaster recovery planning?
A. To identify critical applications
B. To provide technical help
C. To improve data processing efficiency
D. To reduce insurance coverage

•What is the purpose of detective controls in an internal control system?
A) To fix identified problems
B) To reduce the frequency of undesirable events occurring
C) To identify and expose undesirable events that eluded preventive controls
D) To ensure actions are taken to deal with identified risks

•What is the purpose of providing second-site backups in a disaster recovery plan?
A. To increase the risk of data loss
B. To reduce hardware availability
C. To provide duplicate data processing facilities
D. To decrease disaster recovery team members

•What is the primary objective of preventive controls in an internal control system?
A) To identify and expose undesirable events that eluded preventive controls
B) To ensure only authorized personnel have access to firm’s assets
C) To reduce the frequency of undesirable events occurring
D) To fix identified problems