Академический Документы
Профессиональный Документы
Культура Документы
MULTIPLE CHOICE QUESTIONS. Identify the letter of the choice that best completes the statement or answers the
questions.
4
SECOND ASSIGNMENT DURING THE QUARANTINE
46. An inventory record indicates that 12 items of a specific product are on hand. A customer purchased two of the
items, but when recording the order, the data entry clerk mistakenly entered 20 items sold. Which check could
detect this error?
A. Numeric/alphabetic data checks.
B. Limit check.
C. Range check.
D. Reasonableness check.
47. Which check is not an input control?
A. Reasonableness check.
B. Validity check.
C. Spooling check.
D. Missing data check.
48. A computer operator was in a hurry and accidentally used the wrong master file to process a transaction file. As a
result, the accounts receivable master file was erased. Which control would prevent this from happening?
A. Header label check.
B. Expiration date check.
C. Version check.
D. Validity check.
49. Run-to-run control totals can be used for all of the following except
A. To ensure that all data input is validated.
B. To ensure that only transactions of a similar type are being processed.
C. To ensure the records are in sequence and are not missing.
D. To ensure that no transaction is omitted.
50. Methods used to maintain an audit trail in a computerized environment include all of the following except
A. Transaction logs.
B. Transaction Listings.
C. Data encryption.
D. Log of automatic transactions.
51. Risk exposures associated with creating an output file as an intermediate step in the printing process (spooling)
include all of the following actions by a computer criminal except
A. Gaining access to the output file and changing critical data values.
B. Using a remote printer and incurring operating inefficiencies.
C. Making a copy of the output file and using the copy to produce illegal output reports.
D. Printing an extra hardcopy of the output file.
52. Which statement is not correct?
A. Only successful transactions are recorded on a transaction log.
B. Unsuccessful transactions are recorded in an error file.
C. A transaction log is a temporary file.
D. A hardcopy transaction listing is provided to users.
53. Input controls include all of the following except
A. Check digits.
B. Limit check.
C. Spooling check.
D. Missing data check.
54. Which of the following is an example of an input error correction technique?
A. Immediate correction.
B. Rejection of batch.
C. Creation of error file.
D. All are examples of input error correction techniques.
55. Which test of controls will provide evidence that the system as originally implemented was free from material errors
and free from fraud? Review of the documentation indicates that
A. A cost-benefit analysis was conducted.
B. The detailed design was an appropriate solution to the user's problem.
C. Tests were conducted at the individual module and total system levels prior to implementation.
D. Problems detected during the conversion period were corrected in the maintenance phase.
56. Which statement is not true?
A. An audit objective for systems maintenance is to detect unauthorized access to application databases.
B. An audit objective for systems maintenance is to ensure that applications are free from errors.
C. An audit objective for systems maintenance is to verify that user requests for maintenance reconcile to
program version numbers.
5
SECOND ASSIGNMENT DURING THE QUARANTINE
D. An audit objective for systems maintenance is to ensure that the production libraries are protected from
unauthorized access.
57. When the auditor reconciles the program version numbers, which audit objective is being tested?
A. Protect applications from unauthorized changes.
B. Ensure applications are free from error.
C. Protect production libraries from unauthorized access.
D. Ensure incompatible functions have been identified and segregated.
58. When auditors do not rely on a detailed knowledge of the application's internal logic, they are performing
A. Black box tests of program controls.
B. White box tests of program controls.
C. Substantive testing.
D. Intuitive testing.
59. All of the following concepts are associated with the black box approach to auditing computer applications except
A. The application need not be removed from service and tested directly.
B. Auditors do not rely on a detailed knowledge of the application's internal logic.
C. The auditor reconciles previously produced output results with production input transactions.
D. This approach is used for complex transactions that receive input from many sources.
60. Which test is not an example of a white box test?
A. Determining the fair value of inventory.
B. Ensuring that passwords are valid.
C. Verifying that all pay rates are within a specified range.
D. Reconciling control totals.
61. When analyzing the results of the test data method, the auditor would spend the least amount of time reviewing
A. The test transactions.
B. Error reports.
C. Updated master files.
D. Output reports.
62. All of the following are advantages of the test data technique except
A. Auditors need minimal computer expertise to use this method.
B. This method causes minimal disruption to the firm's operations.
C. The test data is easily compiled.
D. The auditor obtains explicit evidence concerning application functions.
63. All of the following are disadvantages of the test data technique except
A. The test data technique requires extensive computer expertise on the part of the auditor.
B. The auditor cannot be sure that the application being tested is a copy of the current application used by
computer services personnel.
C. The auditor cannot be sure that the application being tested is the same application used throughout the
entire year.
D. Preparation of the test data is time-consuming.
64. All of the following statements are true about the integrated test facility (ITF) except
A. Production reports are affected by ITF transactions.
B. ITF databases contain "dummy" records integrated with legitimate records.
C. ITF permits ongoing application auditing.
D. ITF does not disrupt operations or require the intervention of computer services personnel.
65. Which statement is not true? Embedded audit modules
A. Can be turned on and off by the auditor.
B. Reduce operating efficiency.
C. May lose their viability in an environment where programs are modified frequently.
D. Identify transactions to be analyzed using white box tests.
66. Generalized audit software packages perform all of the following tasks except
A. Recalculate data fields.
B. Compare files and identify differences.
C. Stratify statistical samples.
D. Analyze results and form opinions.
67. Which of the following is not an input control?
A. Range check.
B. Limit check.
C. Spooling check.
D. Validity check.
E. They are all input controls.
68. Which of the following is an input control?
6
SECOND ASSIGNMENT DURING THE QUARANTINE
A. Reasonableness check.
B. Run-to-run check.
C. Spooling check.
D. Batch check.
E. None are input controls.