ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 981 discussion

Actual exam question from Isaca's CISA
Question #: 981
Topic #: 1
[All CISA Questions]

Which of the following BEST indicates that an organization's risk management practices contribute to the effectiveness of internal IS audits?

  • A. The audit team participates in risk scenario development workshops.
  • B. The audit department utilizes the corporate risk register.
  • C. The audit department uses the existing risk analysis templates.
  • D. The audit department follows the same reporting format used by the IT risk function.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Staanlee at Dec. 30, 2022, 3:12 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Staanlee
Highly Voted 1 year, 10 months ago
The correct answer is A, The audit team participates in risk scenario development workshops. The participation of the audit team in risk scenario development workshops is an indication that the organization's risk management practices are contributing to the effectiveness of internal IS audits. Risk scenario development involves identifying and analyzing potential risks and vulnerabilities that could affect the organization's information systems and networks. By participating in risk scenario development workshops, the audit team can gain a better understanding of the organization's risk profile and the potential impact of different types of risks on the organization's operations and objectives. This knowledge can help the audit team to more effectively identify and assess risks during internal IS audits, leading to more accurate and relevant audit findings and recommendations.
upvoted 10 times
...
Swallows
Most Recent 7 months, 4 weeks ago
Selected Answer: B
The Risk Register is one of many key components that help identify, assess, and mitigate the risks associated with a project from start to finish during each phase.
upvoted 1 times
...
Rachy
10 months ago
Selected Answer: B
B. This is about audit using the corporate risk register to guide the audit activities which shows that internal audit function aligned with the organization's overall risk management framework
upvoted 2 times
...
FAGFUR
1 year ago
Selected Answer: A
The best indication that an organization's risk management practices contribute to the effectiveness of internal IS audits is when the audit team actively participates in risk scenario development workshops. This suggests that there is collaboration and communication between the audit team and the risk management function. Participating in risk scenario development workshops allows the audit team to gain insights into the organization's risk landscape, understand potential risk scenarios, and align audit activities with the identified risks. It promotes a holistic approach to risk management and helps ensure that audit efforts are focused on areas of greatest concern to the organization.
upvoted 1 times
...
3008
1 year, 3 months ago
It is also efficient for the audit team to participate in risk scenario development workshops or to use existing risk analysis templates. However, the Corporate Risk Register enables continuous assessment and reporting of the organization's risk management and internal control systems.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago