Free IIA IIA-CCSA Practice Questions 2026 - Page 2
Ready for IIA-CCSA Exam?
This practice test is your final exam before the REAL exam
Dare to Take It?
Practice Questions
The entire objectives-risks-controls infrastructures of an organization are subject to greater
monitoring and continuous improvements due to:
A.
Accountability for control
B.
Measuring methodology
C.
Evaluation methodology
D.
Self-assessment methodology
Self-assessment methodology
In traditional approach, evaluating risks and controls were done by auditors and in control
self-assessment approach it is done by work teams.
A.
True
B.
False
True
In traditional approach, objectives used were of management’s and in control
selfassessment approach it is of work teams’.
A.
True
B.
False
False
A process affected by an entity’s board of directors, management and other personnel
designed to provide reasonable assurance regarding the achievement of objectives is
called:
A.
Control location
B.
Control activities
C.
Internal control
D.
External control
Internal control
Operations control is related to the:
A.
Effective and efficiency use of the entity’s cost.
B.
Effective and efficiency use of the entity’s space.
C.
Effective and efficiency use of the entity’s time.
D.
Effective and efficiency use of the entity’s resources.
Effective and efficiency use of the entity’s resources.
__________ is relating to the entity’s fulfillment with applicable laws and regulations.
| Values | |
|
A
|
Compliance control |
Compliance control
Who identified internal control components including Control environment, Information &
communication, risk assessment, control activities and Monitoring?
A.
The American Institute of Standards (AIS)
B.
The American Institute of Certified Professional Accountants (AICPA)
C.
The American Institute of Certified Control (AICC)
D.
The American Institute of Professional Studies (AIPS
The American Institute of Certified Professional Accountants (AICPA)
In traditional approach, final report is issued by management and in control selfassessment
approach it is issued by work teams’.
A.
True
B.
False
False
The policy statement that defines the objectives for and commitment to risk management
within the organization’s strategic and operational context is called:
A.
Risk management
B.
Enterprise risk management
C.
Strategic risk management
D.
Operational risk management
Enterprise risk management
New employees, consultants and contractors must receive security awareness training and
supporting documentation at the time of employment refers to:
A.
Employee orientation
B.
Confidentiality agreement
C.
Both A & B
D.
Neither A nor B
Both A & B
| Page 2 out of 24 Pages |