IIA
IIA-CIA-PART2 · Question #76
IIA-CIA-PART2 Question #76: Real Exam Question with Answer & Explanation
Sign in or unlock IIA-CIA-PART2 to reveal the answer and full explanation for question #76. The question stem and answer options stay visible for context.
Question
An internal auditor wants to determine whether employees are complying with the information security policy, which prohibits leaving sensitive information on employee desks overnight. The auditor checked a sample of 90 desks and found eight that contained sensitive information. How should this observation be reported, if the organization tolerates 4 percent noncompliance?
Options
- AThe matter does not need to be reported, because the noncompliant findings fall within the
- BThe deviations are within the acceptable tolerance limit, so the matter only needs to be reported to
- CThe incidents of noncompliance fall outside the acceptable tolerance limit and require immediate
- DThe incidents of noncompliance exceed the tolerance level and should be included in the final
Unlock IIA-CIA-PART2 to see the answer
You've previewed enough free IIA-CIA-PART2 questions. Unlock IIA-CIA-PART2 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.