1. Home
  2. IIA
  3. IIA-CIA-PART2

IIA IIA-CIA-PART2 Online Practice Questions and Exam Preparation

IIA-CIA-PART2 Exam Details

  • Exam Code
    :IIA-CIA-PART2
  • Exam Name
    :Certified Internal Auditor - Part 2, Conducting the Internal Audit Engagement
  • Certification
    :IIA Certifications
  • Vendor
    :IIA
  • Total Questions
    :1078 Q&As
  • Last Updated
    :May 31, 2026

IIA IIA-CIA-PART2 Online Questions & Answers

  • Question 661:

    Which of the following steps should an internal auditor complete when conducting a review of an electronic data interchange application provided by a third-party service?

    1.Ensure encryption keys meet ISO standards.

    2.Determine whether an independent review of the service provider's operation has been conducted.

    3.Verify that the service provider's contracts include necessary clauses.

    4.Verify that only public-switched data networks are used by the service provider.

    A. 1 and 3.
    B. 1 and 4.
    C. 2 and 3.
    D. 2 and 4.

  • Question 662:

    Which of the following is an example of the Verification of internal documentary evidence?

    A. Reviewing a carrier's bill of lading.
    B. Reconciling a vendor's month-end statement.
    C. Vouching a copy of a sales invoice to receivables.
    D. Recalculating a customer's purchase order.

  • Question 663:

    An internal auditor conducted interviews with several employees, documented the interviews, analyzed the summaries, and drew a number of conclusions. What sort of audit evidence has the internal auditor primarily obtained?

    A. Documentary evidence.
    B. Testimonial evidence.
    C. Analytical evidence.
    D. Physical evidence.

  • Question 664:

    According to the Standards, which of the following is least important in determining the adequacy of an annual audit plan?

    A. Sufficiency.
    B. Appropriateness.
    C. Effective deployment.
    D. Cost effectiveness.

  • Question 665:

    Which of the following conditions are necessary for successful change management?

    1.Decisions and necessary actions are taken promptly.

    2.The traditions of the organization are respected.

    3.Changes result in improvement or reform.

    4.Internal and external communications are controlled.

    A. 1 and 2
    B. 1 and 3
    C. 2 and 3
    D. 2 and 4

  • Question 666:

    Which of the following statements about internal audit's follow-up process is true?

    A. The nature, timing, and extent of follow-up for assurance engagements is standardized to ensure quality performance.
    B. The actions of external auditors and other external assurance providers is not encompassed by internal audit's follow-up process.
    C. Internal auditors have responsibility for determining if management and the board have implemented the recommended action or otherwise accepted the risk.
    D. The follow-up process must be complete and documented in the working papers in order to conclude the engagement.

  • Question 667:

    Which of the following would be considered an objective for an operational internal audit engagement?

    A. Assessing the organization's compliance with a new legal mandate.
    B. Assessing the design adequacy of logical access controls.
    C. Assessing the authorization and timeliness of cash disbursements.
    D. Assessing which enterprise resource planning system should be implemented.

  • Question 668:

    Which of the following is an advantage of an internal audit activity coordinating with a management-defined risk universe?

    A. Increased completeness, including risk categories like political, supplier, and social media.
    B. Business managers can identify and assess risks that occur within each category.
    C. The internal audit activity can rely on management's risk assessment.
    D. Organizationwide audits are required since risk events within categories occur in many different ways.

  • Question 669:

    An examination of the accounts payable function evidenced multiple findings with respect to segregation of duties. After management's response and action plan are received and documented in the final report, which of the following is most appropriate?

    A. Follow up after the applicable changes have been incorporated to validate management's response.
    B. Include the items in the scope of the next scheduled audit of the accounts payable function.
    C. Because management agreed with the findings, no further action is deemed necessary.
    D. Have an internal audit staff member placed into the accounting department until corrections are made.

  • Question 670:

    Where should internal auditors focus their attention when identifying and assessing key risks during the planning stage of an assurance engagement?

    A. Sampling risk
    B. Audit risk
    C. Residual risk
    D. Inherent risk

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only IIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your IIA-CIA-PART2 exam preparations and IIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.