IT Audit Readiness

Questions and Answers

PDF Questions PDF Answers

Which of the following is NOT one of the 9 steps to IT audit readiness?

Map controls to a master control framework library

Identify controls

Capture, track, and report deficiencies (correct)

Identify and assess IT risks

What is the purpose of monitoring and automated testing of controls in IT audit readiness?

To flag exceptions, review, investigate, and remediate

To ensure controls are functioning effectively (correct)

To identify and assess IT risks

To gather people

Why is it important for IT to be audit ready?

To identify and assess IT risks

To assess the effectiveness of existing controls (correct)

To gather people

To capture, track, and report deficiencies

What is the bonus step in achieving IT audit readiness?

Predictive IT risk trending

What is one of the challenges faced by today's IT managers in achieving audit readiness?

Gather people