More MCQs
HOME
Categories
Management Information System
» Emerging Technology in E-Business MCQs
» Infrastructure and Operations MCQs
» Information and Database MCQs
» System Development Lifecycle & Software Development Models MCQs
» Project Management MCQs
» The Process of Auditing Information Systems MCQs
» Governance and Management of IT MCQs
» Information Security Management MCQs
» Business Continuity and Disaster Recovery MCQs
Auditing Infrastructure and Operations MCQs
The review of the capacity management procedures for hardware and performance evaluation procedures is performed to determine whether they will ensure continuous review of hardware and system software performance and capacity. Here on MCQs.club we have prepared easy and useful Multiple-Choice Questions (MCQs) on Auditing Infrastructure and Operations that fully cover MCQs on Information Systems and I.T. Audit, IT Audit MCQs, Information Technology Audit MCQ, information system audit mcqs with answers. These mcq on information technology controls are useful for Competitive exams, Business management exams, Professional accountancy exams.
- The review of the capacity management procedures for hardware and performance evaluation procedures is performed to determine:
- Whether they will ensure continuous review of hardware and system software performance and capacity
- Whether the criteria used in IS management’s hardware performance monitoring pan are based on historical data and analysis obtained from the IS trouble logs, processing schedules.
- Both A&B
- None
- The review of the hardware acquisition plan is performed to determine:
- Whether the hardware acquisition plan is compared regularly to management’s business plan
- Whether IS management’s hardware acquisition plan is in synchronization with the IS plans to identify any deficiencies in the former
- Both A&B
- None
- The review of the Operating System (OS) acquisition criteria is performed to determine:
- Requests for the application of microcomputers are supported by cost benefit analysis
- All OSs are purchased through the IS purchasing department to take advantage of volume discounts or other quality benefits
- Controls relating to software maintenance/testing, System documentation etc.
- All of the above
- The review change management controls is performed to determine:
- Determine if the individual responsible for scheduling was advised in a timely manner regarding changes to hardware configuration
- Verify that IS management has developed and enforced change schedules that allow time for adequate installation and testing of new hardware
- Evaluate the effectiveness of changes to assure that they do not interfere with normal application production processing
- All of the above
- Logical access controls ensure that access to systems, data and programs is restricted to authorized users only by:
- Passwords
- Physical possession ID
- Biometric ID
- Compatibility tests
- All of the above
- The accounting audit trail must allow a message to be traced through each node in a network. Examples of data items that might be kept in the accounting audit trail follow:
- Unique identifier of the source node
- Message sequence number
- Image of message received at each node traversed in the network
- All of the above
- The operation audit trail in the communication sub-system is especially important. Examples of data items that might be kept in the operations audit trail follow:
- Number of messages that have traversed each link
- Queue lengths at each node
- Log errors to identify locations and patterns of errors
- All of the above
- The availability of high-quality network control software is essential to network supervisors being able to make effective use of the operations audit trail.
- True
- False
- Computer operations controls relate to the day-to-day operation of the hardware and software within the IS organization. The Computer operations control include:
- Restricting operator access capabilities
- Executing re-run handling
- Both A&B
- None
- Data entry controls include:
- Authorization of input documents
- Reconciliation of batch total
- Segregation of duties between the person-who-keys-the-data and the person who reviews the keyed data for accuracy and errors
- All of the above
- Audit procedures for data entry should include a review of the controls and the procedures to determine whether:
- Adequate controls exist
- IS personnel are adhering to the established policies
- Proper segregation of duties is being maintained
- All of the above
- Lights out operations – is the automation of key computer room operations whereby tasks can take place without human intervention. The types of tasks being automated with the use of system operations software are:
- Job scheduling, Console operation
- Report balancing and distribution
- Tape mounting and management
- All of the above
- Advantages of Lights Out Operations are:
- Cost containment and reduction in IS operations
- Continuous operations
- Reduced number of system errors and interruptions
- All of the above
- Application controls – are controls over input, processing and output functions. Application controls include methods for ensuring that:
- Only complete accurate and valid data are entered and updated in a computer system
- Processing results meet expectations
- Both A&B
- None
- Processing controls ensure the completeness and accuracy of accumulated data. The processing control techniques that can be used to address the issues of completeness and accuracy of accumulated data include:
- Manual recalculations
- Reasonableness verification of calculated amounts
- Limit checks of calculated amounts
- All of the above
- Input/output (I/O) control personnel are responsible for ensuring that batch processing information is processed accurately and completely in accordance with IS management’s intent and authorization.
- The above is correct
- The above is incorrect
- Input authorization verifies that all transactions have been authorized and approved by management. Types of authorization include:
- Signatures on batch forms provide evidence of proper authorization.
- Online Access Controls ensure that only authorized individuals may access data or perform sensitive functions.
- Terminal Identification can be used to limit input to specific terminals as well as to individuals.
- All of the above
- Source document layout should:
- Emphasize ease of use and readability
- Provide pre-determined input codes to reduce errors
- Both A&B
- None
- Input error handling call be processed by:
- Rejecting only transactions with errors
- Accepting batch in suspense
- Rejecting the whole batch of transactions
- Accepting batch and flagging error transactions
- All of the above
- Input control techniques include:
- Transaction log
- Reconciliation of data
- Documentation of data
- All of the above
- Output controls – provide assurance that the data delivered to users will be presented, formatted and delivered in a consistent and secure manner. Output controls include:
- Logging and storage of negotiable, sensitive and critical forms in a secure place
- Report distribution
- Verification of receipt of reports
- All of the above
- Which of the following documentation should be reviewed to gain an understanding of an application’s development?
- System development methodology documents
- Functional design specifications
- User manuals
- All of the above
- Procedures covering the tasks to be performed by the technical support personnel must be established in accordance with an organization’s overall strategies and policies. The support functions include:
- Determining the source of computer problems and taking appropriate corrective actions
- Initiating problem reports as required and ensuring that problems are resolved in a timely manner
- Both A&B
- None
- Scheduling Reviews –
- It is a major function within the IS department. The schedule includes the jobs that must be run.
- The sequence or job execution and the conditions that cause program execution.
- It permits the scheduling of low priority jobs if time becomes available.
- All of the above
—More to come soon—