Summer Special Flat 65% Limited Time Discount offer - Ends in 0d 00h 00m 00s - Coupon code: suredis

Certensure Logo
  1. Home
  2. IIA
  3. CCSA Certification
  4. IIA-CCSA - Certification in Control Self-Assessment® (CCSA®)

IIA IIA-CCSA Certification in Control Self-Assessment® (CCSA®) Exam Practice Test

Demo: 40 questions
Total 270 questions
Get IIA-CCSA Full Access Download IIA-CCSA PDF

Certification in Control Self-Assessment® (CCSA®) Questions and Answers

Question 1

A weak control is equal to high vulnerability and a strong control is equal to the low vulnerability.

Options:

A.

True

B.

False

Question 2

Procedures and information related to the achievement of organizational objectives and the operational efficiency and effectiveness of the organizations refers to:

Options:

A.

Administrative controls

B.

Accounting controls

C.

Procedural controls

D.

Financial records

Question 3

What has the ability to combine both qualitative and quantitative data in imaginative ways?

Options:

A.

Facts

B.

Impacts

C.

Scenarios

D.

Figures

Question 4

Which of the following is Correct?

Options:

A.

Competency refers to the validity and reliability of audit evidence.

B.

Sufficiency refers to the validity and reliability of resources.

C.

Capability refers to the capacity and reliability of audit evidence.

D.

Consistency refers to the steadiness and reliability of audit evidence

Question 5

Apply principles of risk management at every management level for identifying, evaluating, avoiding, minimizing and controlling risks, is called:

Options:

A.

Procurement policy

B.

Risk Policy

C.

Risk procedure

D.

Policy statement

Question 6

Which of the following is NOT the process risk assessment?

Options:

A.

Risk Management

B.

Risk Identification

C.

Risk Measurement

D.

Risk Prioritization

Question 7

In which standard, the internal audit activity should evaluate and contribute to the improvement of risk management, control and governance processes using a systematic approach.

Options:

A.

2020-Communication and approval

B.

2010-Planning

C.

2120- Controlling

D.

2100-Nature of work

Question 8

Which of the following is NOT the COSO internal controls interrelated component?

Options:

A.

Risk assessment

B.

Information and communication

C.

Internal auditing

D.

Control activity

Question 9

The organization has a mechanism to ensure the prompt resolution of findings from audits and other reviews through:

Options:

A.

Program evaluation

B.

Audit resolution

C.

Ongoing monitoring

D.

Control environment

Question 10

A successful Project has following phases:

Options:

A.

Planning, Execution, Controlling

B.

Initiation, Planning, Execution, Controlling

C.

Initiation, Planning, Execution, Testing

D.

Planning, Execution, Controlling, Testing

Question 11

Internal audit reports characteristic of the internal auditor’s paradigm has internal control as its old paradigm and addressing process risks as its old paradigm.

Options:

A.

True

B.

False

Question 12

Which of the following is NOT the potential benefit of the CSA to the internal auditing?

Options:

A.

Improved employee morale

B.

Improved ability to test informal controls

C.

More efficient use of audit resources

D.

Better ability to focus on high-risk areas

Question 13

If control risk is although minimum, extensive substantive testing will be necessary to determine the validity of transactions and data.

Options:

A.

True

B.

False

Question 14

The degree of risk on a board-based level, which a company or other entity is willing to accept in pursuit of its goals, is referred to as:

Options:

A.

Identify Cross-enterprise risk

B.

Risk growth

C.

Risk appetite

D.

Risk seize opportunity

Question 15

Non-discretionary controls are:

Options:

A.

subject to human choice or judgment

B.

customary controls with which all auditors are familiar.

C.

automatically provided by the system and cannot be bypassed, ignored or overridden based on human judgment.

D.

addresses intangibles such as competence, values, openness and leadership and more difficult to grasp.

Question 16

Which of the following is correct?

Options:

A.

Internal audit characteristic of the internal auditor’s paradigm has internal control as its old paradigm and risk management as its new paradigm.

B.

Internal audit characteristic of the internal auditor’s paradigm has internal control as its new paradigm and cost management as its old paradigm.

C.

Internal audit response characteristic of the internal auditor’s paradigm has internal control as its old paradigm and risk management as its new paradigm.

D.

Internal audit response characteristic of the internal auditor’s paradigm has internal control as its new paradigm and risk management as its old paradigm.

Question 17

What is directly related to the effectiveness of controls that are in place?

Options:

A.

Performance

B.

Vulnerability

C.

Scalability

D.

Risk

Question 18

SWOT Analysis is:

Options:

A.

the process of analyzing environmental information

B.

the process of monitoring environmental information

C.

the process of organization’s hierarchical information

D.

the process of analyzing technological policies

Question 19

Which of the following is NOT the reason why organizations use strategic planning?

Options:

A.

To establish and help achieve business objectives.

B.

To focus resources on areas that is key to the organization’s success.

C.

To communicate established objectives to stakeholders.

D.

To neglect establish criteria against which to measure progress.

Question 20

Use of observations and interviews to study how people learn, interact with others or make decisions refers to:

Options:

A.

Open-ended discussion

B.

Focus groups

C.

Ethnographic analysis

D.

None of the above

Question 21

___________ are clearly communicated to all employees and management obtains feedback signifying that the communication has been effective.

Options:

A.

Entity wide objectives

B.

Activity-level objectives

C.

Presentations

D.

Forms and means of communication

Question 22

The policy statement that defines the objectives for and commitment to risk management within the organization’s strategic and operational context is called:

Options:

A.

Risk management

B.

Enterprise risk management

C.

Strategic risk management

D.

Operational risk management

Question 23

Severity of consequences is often dependent on the operation of internal controls.

Options:

A.

True

B.

False

Question 24

Which of the following is Correct?

Options:

A.

The decision symbol have three exit points, these can be on the sides and the bottom.

B.

Flowcharts generally flow from top to bottom and right to left.

C.

Flowchart symbols may or may not start with a terminal symbol.

D.

Flowchart symbols should have a single entry point on the bottom of the symbol.

Question 25

In traditional approach, evaluating risks and controls were done by auditors and in control self-assessment approach it is done by work teams.

Options:

A.

True

B.

False

Question 26

Compliance objective is:

Options:

A.

guidelines to handle internal controls monitoring with standards

B.

policy or procedure that help ensure management’s objectives

C.

timely information and communication about company’s goals

D.

observance of tax laws, industry requirement and regulatory requirements

Question 27

Control self-assessment questions have which following categories?

Options:

A.

General or Core questions

B.

Questions relating to particular business function

C.

Questions relating to specific business unit involves in workshop

D.

All of the above

Question 28

A process to identify, assess, manage and control potential events in order to provide reasonable assurance regarding the achievement of the organization’s objectives is called:

Options:

A.

Activity management

B.

Risk management

C.

Control management

D.

Accomplish management

Question 29

Who identified internal control components including Control environment, Information & communication, risk assessment, control activities and Monitoring?

Options:

A.

The American Institute of Standards (AIS)

B.

The American Institute of Certified Professional Accountants (AICPA)

C.

The American Institute of Certified Control (AICC)

D.

The American Institute of Professional Studies (AIPS

Question 30

Compliance tests are procedures designed to verify whether controls are being applied in the manner described in the flowcharts, questionnaires etc.

Options:

A.

True

B.

False

Question 31

What describes that what the organization wants to achieve from a very long-term perspective?

Options:

A.

Mission statement

B.

Vision statement

C.

Organizational objectives

D.

Long-term strategies

Question 32

What assess the overall effect of the program and are typically conducted on a periodic or as needed basis?

Options:

A.

Program evaluation

B.

Program effectiveness

C.

Program efficiency

D.

Program routine

Question 33

Votes are cast anonymously and all responses are confidential is one of the advantages of:

Options:

A.

Classified voting

B.

Electronic mailing

C.

Electronic voting

D.

None of the above

Question 34

Which of the following is Correct?

Options:

A.

Risk arising from business strategies and activities are identified and prioritized.

B.

Changes arising from business strategies and activities are identified and not prioritized.

C.

Risk arising from business strategies and activities are identified and but less prioritized.

D.

Risk arising from decision strategies and activities are identified and prioritized.

Question 35

Substantive tests are:

Options:

A.

procedures designed to test for validity of flowcharts.

B.

activities designed to test for risk assessment.

C.

procedures designed to test for errors in the system of internal control.

D.

procedures designed to test for errors in the automated control systems.

Question 36

An organization-wide commitment to quality is called Quality control.

Options:

A.

True

B.

False

Question 37

Ratio analysis is:

Options:

A.

comparison of statistics by showing the relationship of one or more type of units to a single type of unit

B.

comparison of equivalence by showing the equivalent relationship of one type of unit to a different type of unit

C.

comparison of rationality by showing the relationship of multiple types of units to a single type of unit

D.

comparison of proportionality by showing the relationship of one type of unit to a different type of unit

Question 38

Which of the following is correct?

Options:

A.

Practitioners use a more democratic approach to leadership.

B.

Strategic managers use a more democratic approach to leadership.

C.

Autocratic managers use a more democratic approach to leadership.

D.

Participate managers use a more democratic approach to leadership.

Question 39

The combination of processes and structures implemented by the board in order to inform, direct, manage and monitor the activities of the organization toward its achievements is called:

Options:

A.

Supervision

B.

Overseeing

C.

Monitoring capitals

D.

Governance

Question 40

Management thinks in terms of risk (implicitly and explicitly), and management rarely thinks in terms of control.

Options:

A.

True

B.

False

Load More IIA-CCSA Questions
Demo: 40 questions
Total 270 questions
Get IIA-CCSA Full Access Download IIA-CCSA PDF