SEMESTER MARCH 2019

BMIA 31102 – IT AUDITING

(TUTORIALS– IT AUDIT CONTROL) (17 April 2019)
NAME: _____________________________________________________ ID: __________________

1. What is control in IT audit?

2. Describe FOUR (4) objectives of audit control.

3. Explain THREE (3) risks if control of hardware and software does not implemented.

4. Discuss THREE (3) scope of control.

5. Explain what application control is. Give one example of application control.

6. In safeguarding application control output, for example printing out, what are the risks? Explain

how you manage to control it from the risks?

7. In testing application control, what are the meaning of black-box and white-box testing?

8. Describe TWO (2) types of white-box testing techniques.

9. What is substantive testing? Explain with ONE (1) example.

10. Explain what change management is. Discuss why it is important.

11. List FOUR (4) sources of change management.

12. Describe THREE (3) objectives of change management.

13. Discuss each step of change management procedure.

14. What are the processes in creating a request for change?

15. What is impact analysis? What are the THREE (3) aspects of it?