Professional Documents
Culture Documents
Class18062023CA. Tejas Chokshi
Class18062023CA. Tejas Chokshi
CBA ( ICAI)
18.06.2023
3 pm to 5 pm
5 Sampling 10 min
committee
As an information system auditor, you are assignment to audit the big basket, which is the
delivery platform and you are required to verify various aspects including stake holders
satisfaction vis-à-vis the IT balanced score card , risk assessment vis-à-vis the internal
control system as framed by the management, Audit charter vis-à-vis the audit processes,
his use of compliance & substantive testing and at places, he may be taking up assignment
as control self-assessment where in involvement of the line – managers and training may be
the integral part and at certain places, he may verify all outsourcing functions within
committee and IT steering committee and he may have to verify if the IT is aligned with
business objectives . How the auditor will work out the sampling methods basis the results
of comprehensive and substantive testing and auditing the roles of various IT function
2. Which process would an auditor typically employ to evaluate and manage risks in the
3. What is the audit charter's role in the information system audit of the delivery
4. How does an auditor use compliance testing during the audit of the delivery
5. What is the purpose of substantive testing in the information system audit of the
6. When would an auditor engage in control self-assessment during the audit of the
vendors
9. How would an auditor assess the alignment of IT with the business objectives of the
10. In the audit, how does the sampling method relate to the results of comprehensive
testing? a) Determines the sample size for substantive testing b) Evaluates the IT
11. Which IT functions would an auditor focus on while assessing the roles and
IT strategies
12. What metrics would an auditor use to evaluate the effectiveness of the IT functions
assessment
13. How would an auditor ensure comprehensive coverage of necessary areas and
charter's guidance
14. What type of documentation would an auditor review to gain an understanding of
15. How would an auditor assess the adequacy of IT controls within the delivery
16. What is the role of continuous auditing in the context of the audit of the delivery
17. How would an auditor evaluate the effectiveness of the IT governance framework
assessment
18. What measures would an auditor take to ensure the independence and objectivity
charter's guidelines
19. What are examples of potential risks the delivery platform may face in its IT
the above
20. How would an auditor prioritize identified risks during the risk assessment phase? a)
outsourcing functions
assessment in this case study? a) ISO 27001 b) COBIT c) COSO ERM d) All of the
above
22. How does the audit charter guide the information system audit of the delivery
23. How would an auditor use compliance testing procedures during the audit of the
and regulations
24. What evidence would an auditor gather to support compliance testing findings in the
25. How would an auditor assess the reliability and accuracy of data used in the
substantive testing
26. What is the benefit of control self-assessment in the context of this case study? a)
27. How would an auditor encourage stakeholder participation in the control self-
and procedures
28. What criteria would an auditor use to evaluate the effectiveness of the control self-
functions
30. How would an auditor determine the sample size for substantive testing in this case
scorecard
31. What factors would an auditor consider when selecting the sample for substantive
testing in the audit of the delivery platform? a) Transaction complexity b) Risk levels
32. Can you explain the difference between comprehensive testing and substantive
Comprehensive testing follows the audit charter, while substantive testing follows
33. How would an auditor evaluate the roles and responsibilities of various IT functions
within the delivery platform during the audit? a) By conducting control self-
34. What indicators would an auditor use to assess the effectiveness of the IT functions
36. Can you provide examples of potential risks the delivery platform may face in its IT
the above
37. How would an auditor prioritize the identified risks during the risk assessment phase
assessment in this case study? a) ISO 27001 b) COBIT c) COSO ERM d) All of the
above
39. How does the audit charter guide the information system audit of the delivery
40. How would an auditor use compliance testing procedures during the audit of the
and regulations
41. What evidence would an auditor gather to support compliance testing findings in the
42. How would an auditor assess the reliability and accuracy of data used in the
substantive testing
43. What is the benefit of control self-assessment in the context of this case study? a)
44. How would an auditor encourage stakeholder participation in the control self-
and procedures
45. What criteria would an auditor use to evaluate the effectiveness of the control self-
46. Can you explain the concept of substantive testing in the context of this case study?
functions
47. How would an auditor determine the sample size for substantive testing in this case
scorecard
48. What factors would an auditor consider when selecting the sample for substantive
testing in the audit of the delivery platform? a) Transaction complexity b) Risk levels
49. Can you explain the difference between comprehensive testing and substantive
Comprehensive testing follows the audit charter, while substantive testing follows
50. How would an auditor evaluate the roles and responsibilities of various IT functions
within the delivery platform during the audit? a) By conducting control self-
51. What indicators would an auditor use to assess the effectiveness of the IT functions
52. How would an auditor ensure the audit of the multifunctional working delivery
53. Can you provide examples of potential risks the delivery platform may face in its IT
the above
54. How would an auditor prioritize the identified risks during the risk assessment phase
assessment in this case study? a) ISO 27001 b) COBIT c) COSO ERM d) All of the
above
56. How does the audit charter guide the information system audit of the delivery
57. How would an auditor use compliance testing procedures during the audit of the
and regulations
58. What evidence would an auditor gather to support compliance testing findings in the
59. How would an auditor assess the reliability and accuracy of data used in the
substantive testing
60. What is the benefit of control self-assessment in the context of this case study? a)
61. How would an auditor encourage stakeholder participation in the control self-
and procedures
62. What criteria would an auditor use to evaluate the effectiveness of the control self-
functions
64. How would an auditor determine the sample size for substantive testing in this case
scorecard
65. What factors would an auditor consider when selecting the sample for substantive
testing in the audit of the delivery platform? a) Transaction complexity b) Risk levels
66. Can you explain the difference between comprehensive testing and substantive
Comprehensive testing follows the audit charter, while substantive testing follows
67. How would an auditor evaluate the roles and responsibilities of various IT functions
within the delivery platform during the audit? a) By conducting control self-
68. What indicators would an auditor use to assess the effectiveness of the IT functions
70. Can you provide examples of potential risks the delivery platform may face in its IT
the above
71. How would an auditor prioritize the identified risks during the risk assessment phase
assessment in this case study? a) ISO 27001 b) COBIT c) COSO ERM d) All of the
above
73. How does the audit charter guide the information system audit of the delivery
74. How would an auditor use compliance testing procedures during the audit of the
and regulations
75. What evidence would an auditor gather to support compliance testing findings in the
76. How would an auditor assess the reliability and accuracy of data used in the
substantive testing
77. What is the benefit of control self-assessment in the context of this case study? a)
78. How would an auditor encourage stakeholder participation in the control self-
and procedures
79. What criteria would an auditor use to evaluate the effectiveness of the control self-
80. Can you explain the concept of substantive testing in the context of this case study?
functions
81. How would an auditor determine the sample size for substantive testing in this case
scorecard
82. What factors would an auditor consider when selecting the sample for substantive
testing in the audit of the delivery platform? a) Transaction complexity b) Risk levels
83. Can you explain the difference between comprehensive testing and substantive
Comprehensive testing follows the audit charter, while substantive testing follows
84. How would an auditor evaluate the roles and responsibilities of various IT functions
within the delivery platform during the audit? a) By conducting control self-
85. What indicators would an auditor use to assess the effectiveness of the IT functions
86. How would an auditor ensure the audit of the multifunctional working delivery
87. Can you provide examples of potential risks the delivery platform may face in its IT
the above
88. How would an auditor prioritize the identified risks during the risk assessment phase
assessment in this case study? a) ISO 27001 b) COBIT c) COSO ERM d) All of the
above
90. How does the audit charter guide the information system audit of the delivery
91. How would an auditor use compliance testing procedures during the audit of the
and regulations
92. What evidence would an auditor gather to support compliance testing findings in the
93. How would an auditor assess the reliability and accuracy of data used in the
substantive testing
94. What is the benefit of control self-assessment in the context of this case study? a)
95. How would an auditor encourage stakeholder participation in the control self-
and procedures
96. What criteria would an auditor use to evaluate the effectiveness of the control self-
functions
98. How would an auditor determine the sample size for substantive testing in this case
scorecard
99. What factors would an auditor consider when selecting the sample for substantive
testing in the audit of the delivery platform? a) Transaction complexity b) Risk levels
100. Can you explain the difference between comprehensive testing and