Summer Special Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 8w52ceb345

An internal auditor wants to determine whether employees are complying with the information security policy,...

IIA IIA-ACCA Full Course Access
IIA IIA-ACCA View All Questions

An internal auditor wants to determine whether employees are complying with the information security policy, which prohibits leaving sensitive information on employee desks overnight. The auditor checked a sample of 90 desks and found eight that contained sensitive information. How should this observation be reported, if the organization tolerates 4 percent noncompliance?

A.

The matter does not need to be reported, because the noncompliant findings fall within the acceptable tolerance limit.

B.

The deviations are within the acceptable tolerance limit, so the matter only needs to be reported to the information security manager.

C.

The incidents of noncompliance fall outside the acceptable tolerance limit and require immediate corrective action, as opposed to reporting.

D.

The incidents of noncompliance exceed the tolerance level and should be included in the final engagement report.

IIA-ACCA PDF/Engine
  • Printable Format
  • Value of Money
  • 100% Pass Assurance
  • Verified Answers
  • Researched by Industry Experts
  • Based on Real Exams Scenarios
  • 100% Real Questions
buy now IIA-ACCA pdf
Get 60% Discount on All Products, Use Coupon: "8w52ceb345"
Next
A draft internal audit report that cites deficient conditions generally should be reviewed with which...
During a fraud interview, it was discovered that unquestioned authority enabled a vice president to...
Previous