THINK BIG!

Our only savior is our will power. Will is the switch that controls everything in this universe. If you don't exercise your will power, you will be a weakling, easily influenced by your environment. Development of the will is the secret of magnetism. Men of success are men of great will power. When you develop will, no matter how you are pounded down by life, you rise again and say, "I am successful. I can win." Regards from Prof Mahaley Head Gmsisuccess Your Career Mentor Gmsisuccess...

Thursday, May 14, 2026

Risk Assessment CIA part 1

CIA Part 1

A) 50 Case-Based MCQs

*Domain II & III: Risk Assessment & Risk Management*

*2025 IIA Global Internal Audit Standards + Practice Guides*

*Case 1-10: Risk Assessment, Risk Types, Risk Profile*

*Case 1*

CAE of TechCo is doing annual risk assessment. Identified risks: 1) Cyber breach, 2) Key employee turnover, 3) New data law non-compliance, 4) USD/INR fluctuation.

*Q1. “Cyber breach” is best classified as:*

A. Strategic risk

B. Operational risk

C. Financial risk

D. Compliance risk

*Answer:

*Q2. “New data law non-compliance” is:*

A. Strategic

B. Operational

C. Compliance

D. Reputational

*Answer:

*Q3. “USD/INR fluctuation” is:*

A. Strategic risk

B. Financial/Market risk

C. Hazard risk

D. Operational risk

*Answer:

*Q4. Risk profile of TechCo is:*

A. List of all controls

B. Composite view of types/levels of risk org faces at a point in time

C. Audit plan

D. Risk register only

*Answer:

*Q5. Inherent risk means:*

A. Risk after controls

B. Risk before considering controls/mitigation

C. Residual risk

D. Risk appetite

*Answer:

*Q6. Residual risk means:*

A. Risk before controls

B. Risk remaining after mgmt actions/controls

C. Inherent risk

D. Risk appetite

*Answer:

*Q7. CAE ranks risks using Impact x Likelihood. This is:*

A. Risk appetite

B. Risk assessment – qualitative/quantitative analysis

C. Risk register

D. Control assessment

*Answer:

*Q8. “Risk of key employee turnover” impacts ability to meet strategic goals. This is:*

A. Pure compliance risk

B. Strategic + Operational risk

C. Only financial

D. Not a risk

*Answer:

*Q9. Hazard risk example:*

A. New competitor

B. Fire in factory

C. Interest rate change

D. Failed product launch

*Answer:

*Q10. Risk assessment should be done:*

A. Once every 5 years

B. At least annually + when significant change occurs

C. Only by mgmt

D. Never by IA

*Answer:

*Case 11-20: Risk Register, Risk Map, Risk Mapping*

*Case 2*

Risk register shows: “Vendor fraud – Impact: High, Likelihood: Medium, Owner: CPO, Control: 3-way match”. CAE plots this on 5x5 heat map.

*Q11. Risk register must contain at minimum:*

A. Audit findings only

B. Risk description, assessment, owner, response, status

C. Staff names

D. Budget

*Answer:

*Q12. On 5x5 risk map, High Impact + Medium Likelihood plots as:*

A. Green zone

B. Yellow/Amber zone

C. Red zone

D. Not plotted

*Answer:

*Q13. Risk mapping helps CAE to:*

A. Assign audit staff

B. Visualize & prioritize risks for audit planning

C. Set salaries

D. Approve vendors

*Answer:

*Q14. “3-way match” control reduces which component?*

A. Impact

B. Likelihood of vendor fraud

C. Both

D. Neither

*Answer:

*Q15. If control fails, residual risk moves:*

A. Down on map

B. Up towards inherent risk

C. Off the map

D. To green

*Answer:

*Q16. Risk map limitation:*

A. Too accurate

B. Subjective scoring, ignores velocity/interdependency

C. Required by Standards

D. Replaces register

*Answer:

*Q17. Risk velocity means:*

A. Speed at which risk impacts org once it occurs

B. Likelihood

C. Impact

D. Control cost

*Answer

*Q18. CAE finds risk not in register. Should:*

A. Ignore

B. Update register + assess per Std 9.1

C. Tell external audit

D. Remove other risks

*Answer:

*Q19. Best owner for “cyber risk” in register:*

A. CAE

B. CISO/CIO – mgmt who can manage it

C. Board

D. External audit

*Answer:

*Q20. Risk map color for Low Impact + Low Likelihood:*

A. Red

B. Amber

C. Green

D. Black

*Answer:

*Case 21-30: Risk Management, Risk Strategy, Risk Appetite*

*Case 3*

Board sets “Zero tolerance for safety incidents”. Mgmt implements daily safety checks. Residual risk still “Low”.

*Q21. “Zero tolerance” reflects:*

A. Risk capacity

B. Risk appetite – level of risk org willing to accept

C. Risk tolerance

D. Inherent risk

*Answer:

*Q22. Risk tolerance is:*

A. Same as appetite

B. Acceptable variation around risk appetite

C. Unlimited

D. Set by IA

*Answer:

*Q23. Risk capacity means:*

A. Max risk org can bear without threat to existence

B. Desired risk

C. Residual risk

D. Control level

*Answer:

*Q24. Four risk responses per COSO:*

A. Avoid, Accept, Reduce, Share/Transfer

B. Ignore, Delay, Hide, Accept

C. Assess, Audit, Report, Close

D. High, Med, Low, Zero

*Answer:

*Q25. “Buy cyber insurance” is:*

A. Avoid

B. Reduce

C. Share/Transfer

D. Accept

*Answer:

*Q26. “Stop selling in high-risk country” is:*

A. Accept

B. Avoid

C. Share

D. Reduce

*Answer:

*Q27. “Install firewall” is:*

A. Avoid

B. Accept

C. Reduce/Mitigate

D. Transfer

*Answer:

*Q28. Board accepts “Medium” cyber risk due to cost. This is:*

A. Avoid

B. Accept – within appetite

C. Transfer

D. Violation

*Answer

*Q29. Risk strategy must align with:*

A. Audit plan only

B. Organizational objectives & strategy

C. Staff preference

D. External audit

*Answer:

*Q30. CAE role in risk management per Std 9.1:*

A. Own risks

B. Provide assurance on effectiveness of risk mgmt processes

C. Set appetite

D. Manage risks

*Answer:

*Case 31-40: Risk Maturity Model*

*Case 4*

CAE assesses ERM. Finds: Risks identified ad-hoc, no formal register, no appetite statement, mgmt reacts to events.

*Q31. This ERM maturity level is:*

A. Optimized

B. Managed

C. Defined

D. Initial/Ad-hoc

*Answer

*Q32. “Optimized” maturity means:*

A. No process

B. Risk mgmt embedded, continuous improvement, quantitative

C. Only policies exist

D. Firefighting

*Answer:

*Q33. Risk Maturity Model helps:*

A. Set audit fees

B. Benchmark org’s ERM vs best practice, guide improvement

C. Punish mgmt

D. Replace audit

*Answer:

*Q34. At “Defined” level, org has:*

A. No documentation

B. Formal policy, process, roles defined, but not fully consistent

C. Continuous monitoring

D. Predictive analytics

*Answer

*Q35. IA can use maturity model to:*

A. Replace risk assessment

B. Provide advice to mgmt on improving ERM per Std 9.1

C. Rate individuals

D. Set strategy

*Answer:

*Q36. Key attribute of “Managed” level:*

A. Ad-hoc

B. Processes measured, controlled, some metrics

C. Optimized

D. None

*Answer:

*Q37. Moving from Initial to Defined requires:*

A. Nothing

B. Documented policy, risk register, assigned owners

C. AI tools

D. CAE approval

*Answer:

*Q38. Which is NOT a risk maturity model:*

A. COSO ERM

B. ISO 31000

C. RIMS RMM

D. IFRS 9

*Answer: .

*Q39. Board asks CAE “How mature is our ERM?”. CAE should:*

A. Refuse

B. Assess using model + provide opinion per Std 9.1

C. Ask consultant

D. Say “good”

*Answer:

*Q40. Optimized org uses:*

A. Gut feel

B. Key Risk Indicators + Predictive analytics + integrated GRC

C. Spreadsheets only

D. No reporting

*Answer:

*Case 41-50: Mixed – Application*

*Case 5*

New product launch risk: Impact High, Likelihood High, Velocity Fast. No control

*Q41. Inherent risk plots where on 5x5 map?*

A. Green

B. Amber

C. Red – top right

D. Bottom left

*Answer:

*Q42. Velocity “Fast” means CAE should:*

A. Audit annually

B. Prioritize + continuous monitoring

C. Ignore

D. Defer 3 years

*Answer:

*Q43. Mgmt decides to launch anyway. This is:*

A. Avoid

B. Accept – outside appetite? If Board approves, must document

C. Transfer

D. Reduce

*Answer:

*Q44. CAE adds risk to risk register. Next step:*

A. Close

B. Validate controls + assess residual risk

C. Delete old risks

D. Email CEO

*Answer:

*Q45. Emerging risk example:*

A. Last year’s fire

B. AI regulation not yet passed but expected

C. Paid invoice

D. Closed audit

*Answer:

*Q46. Top-down risk assessment starts with:*

A. Transaction testing

B. Strategic objectives, then risks to objectives

C. Control testing

D. Staff interviews only

*Answer:

*Q47. Bottom-up risk assessment starts with:*

A. Board strategy

B. Process-level risks rolled up

C. Appetite

D. Audit plan

*Answer:

*Q48. Best practice: Combine top-down + bottom-up because:*

A. Not needed

B. Ensures strategic + operational risks captured

C. Wastes time

D. Only top-down allowed

*Answer:

*Q49. Risk universe includes:*

A. Only auditable areas

B. All potential risks from all sources across org

C. Past risks only

D. External risks only

*Answer:

*Q50. Per 2025 Standards, CAE must consider risk when developing audit plan per:*

A. Std 4.2 Proficiency

B. Std 9.4 Internal Audit Plan – based on risk assessment

C. Std 6.1 Mandate

D. Std 11.1 Communication

*Answer:

www.GMSIsuccess.in

B) Below are 20 advanced, case‑based MCQs on risk assessment and related topics aligned to the CIA Part 1 (2025) syllabus. Each question is written as a short case requiring analysis, and each answer cites an authoritative source. Use these for practice and exam-style reasoning.

Instructions: choose the best answer for each question. Each question’s answer and rationale follow it.

1) Case: A multinational manufacturer centralizes risk reporting but local plants still keep separate risk registers that are rarely consolidated into the corporate register. Senior management receives an aggregated report quarterly that shows low residual risk across most categories. Which audit finding is most likely accurate?

A. Risk registers are complete and residual risks are low.

B. Risk aggregation and reporting processes are weak, causing understatement of enterprise risk.

C. Quarterly reporting frequency is sufficient for enterprise risk management.

D. Local registers should be eliminated to improve control.

Answer:

2) Case: An organization’s ERM maturity assessment shows strong risk identification but poor linkage between risk appetite and risk response. Which maturity gap does this represent?

A. Culture and tone at the top.

B. Risk measurement and analytics.

C. Strategy alignment and risk appetite integration.

D. Risk event reporting.

Answer:

3) Case: The CAE plans a risk‑based audit plan. Management has a formal risk map showing inherent and residual risk scored by likelihood and impact, but no documented rationale for controls effectiveness. What should the auditor do first?

A. Use the risk map as-is and schedule audits by highest residual risk.

B. Request the risk register and test control effectiveness asserted by management.

C. Ignore the risk map and conduct a full-scope financial audit.

D. Recommend outsourcing risk scoring.

Answer:

4) Case: A bank’s risk owner for cyber risk is the CIO, but risk treatment decisions (budget, vendor selection) are made by business unit heads without CIO involvement. What control weakness does this show?

A. Segregation of duties.

B. Lack of clear accountability and authority of the risk owner.

C. Over-reliance on technology controls.

D. Poor IT governance only.

Answer:

5) Case: During audit planning, you see the organization’s risk strategy prioritizes reputation, regulatory, and financial risks. The audit resource allocation focuses largely on operational efficiency risks. What is the auditor’s best conclusion?

A. Audit plan is well diversified.

B. Audit resource allocation is not aligned with the organization’s risk strategy.

C. Operational risks are always higher priority than reputation.

D. No action—audit independence prevents alignment.

Answer:

6) Case: A company’s risk register lists dozens of low-likelihood risks each with high impact, without inherent/residual scoring or owner assignment. What is the primary deficiency?

A. Overestimation of risk likelihood.

B. Lack of structured risk scoring and ownership.

C. Too many risks listed—register should contain only top 10.

D. Use of qualitative rather than quantitative methods.

Answer:

7) Case: The board sets a conservative risk appetite but management interprets it as permissive and funds many high-risk initiatives. Which monitoring mechanism would best detect and prevent this divergence?

A. Annual external audit only.

B. Structured KRIs linked to appetite thresholds and regular reporting to the board.

C. Ad hoc CEO briefings.

D. Informal discussions in management meetings.

Answer:

8) Case: In a maturity assessment the organization scores high on processes but low on risk culture. What audit approach best addresses this?

A. Focus only on process testing since processes are mature.

B. Expand audits to include behavior indicators, tone at the top, and training effectiveness.

C. Remove culture from scope since it’s hard to measure.

D. Outsource culture assessment.

Answer:

9) Case: Management’s risk map shows a manufacturing safety hazard scored high. Controls exist but there are frequent near-misses. As an auditor, what evidence best tests control effectiveness?

A. Review the map and accept the residual scoring.

B. Examine incident logs, root cause analyses, and control monitoring records.

C. Interview managers only.

D. Compare to industry accident rates only.

Answer

10) Case: A small nonprofit uses a single spreadsheet for its risk register with no version control, and several owners email updates. What is the key audit recommendation?

A. Continue with the spreadsheet but increase email frequency.

B. Implement a controlled risk register (tool/process) and formal change/version controls.

C. Eliminate the register—too risky to maintain.

D. Move to a paper-based binder.

Answer:

11) Case: An insurer’s enterprise risk management program uses scenario analysis and stress testing for tail risks, but auditors find inconsistent documentation of assumptions. What is the likely impact?

A. Better risk insights.

B. Reduced comparability and questionable reliability of stress results.

C. No impact—stress testing is qualitative.

D. Only actuarial teams are affected.

Answer:

12) Case: A risk owner receives a high-impact risk notification but lacks budget authority to implement remediation. Which principle is breached?

A. Risk tolerance.

B. Risk-ownership accountability (authority to act).

C. Risk identification.

D. Control self-assessment.

Answer:

13) Case: The audit team wants to prioritize audits using a risk map that shows clustering of high likelihood/low impact risks in one quadrant and low likelihood/high impact in another. For enterprise focus, which risks should get priority?

A. High likelihood/low impact only.

B. Low likelihood/high impact only.

C. Both—consider risk appetite, detectability, and potential aggregation effects.

D. Neither—prioritize based on management preference.

Answer:

14) Case: A company’s risk maturity model scores low on integration with strategy but high on tools and processes. Management claims tooling will fix it. As an auditor, what observation is most appropriate?

A. Tools alone won’t ensure strategic integration; governance and incentives must align.

B. Tools will automatically drive integration.

C. Low strategic integration is irrelevant if tools exist.

D. Recommend buying more tools.

Answer:

15) Case: During walkthroughs you find the risk register’s treatment status field marked “implemented” but no post‑implementation testing exists. What is the correct audit conclusion?

A. Treatments are effective because they’re implemented.

B. Implementation without testing does not demonstrate control effectiveness; further testing is required.

C. Audit should accept management’s word.

D. Close the audit—no further work.

Answer:

16) Case: A company uses qualitative scoring only. Senior leaders ask auditors whether quantitative scoring is necessary. What’s the sound audit perspective?

A. Qualitative suffices always.

B. Quantitative methods add rigor for measurable risks but qualitative is acceptable when metrics are absent; selection should match the risk type and data availability.

C. Quantitative is mandatory per IIA.

D. Remove scoring entirely.

Answer:

17) Case: The audit plan lists a top‑risk process but the named risk owner is a recently hired VP with no documentation of handover. What should the audit focus on?

A. Evaluate the transition governance, documentation of responsibilities, and competence of the new owner.

B. Ignore ownership and audit the process.

C. Recommend immediate removal of the VP.

D. Defer audit until the owner is fully settled.

Answer:

18) Case: Enterprise stress testing identifies capital adequacy concerns under extreme scenarios, but the risk strategy lacks predefined triggers for capital actions. What gap exists?

A. Inadequate scenario complexity.

B. Missing risk appetite thresholds and actionable contingency plans.

C. Too conservative capital planning.

D. Missing external audit signoff.

Answer:

19) Case: A risk-based audit methodology ranks area A as medium risk, but area A experienced a major control failure last quarter. What should the auditor do now?

A. Reassess risk scoring, increase audit coverage, and investigate root causes of the control failure.

B. Keep the original ranking—past events are irrelevant.

C. Reduce audit coverage since issues were already found.

D. Close the file.

Answer:

20) Case: Board members receive a condensed risk heat map but request narrative examples and aggregated KRI trends to understand context. As internal audit leader, what should you provide?

A. Only the heat map—boards prefer visuals.

B. Heat map plus concise narratives, KRI trend charts, and movement analysis linking risks to strategy.

C. Raw data only.

D. Verbal summary in the next meeting only.

Answer:

www.GMSIsuccess.in

For online exam software MCQ test Click link 🖇️

www.finzo.pw

Saturday, May 9, 2026

Answer 100MCQ Basic concept on Accounting economics business acumen organisation structure Cost Accounting etc

100 MCQs – US CMA Part 1 Foundation Topics

*Covers: Basic Accounting, Economics, Cost Accounting, Business Acumen, Governance, Finance Terms, AIS, Revenue/Purchase/Payroll Cycles, Org Structure, Tech & Data Analytics*

---

*Section 1: Basic Accounting Concepts – 15 Qs*

1. *GAAP stands for:*

A. Generally Accepted Audit Principles

B. Generally Accepted Accounting Principles

C. General Accounting Application Process

D. Government Accounting Auditing Procedures

*Answer: B*

2. *The accounting equation is:*

A. Assets = Liabilities + Equity

B. Assets = Liabilities – Equity

C. Assets + Liabilities = Equity

D. Assets + Equity = Liabilities

*Answer: A*

3. *Revenue is recognized when:*

A. Cash is received

B. Performance obligation is satisfied per ASC 606

C. Invoice is sent

D. Contract is signed

*Answer: B*

4. *Accrual basis records expenses when:*

A. Paid

B. Incurred, regardless of payment

C. Budgeted

D. Approved

*Answer: B*

5. *Which is a contra-asset account?*

A. Accounts Payable

B. Accumulated Depreciation

C. Sales Revenue

D. Prepaid Rent

*Answer: B*

6. *Depreciation is an example of:*

A. Matching principle

B. Revenue recognition

C. Conservatism

D. Full disclosure

*Answer: A*

7. *Current assets do NOT include:*

A. Inventory

B. Accounts Receivable

C. Land

D. Prepaid Insurance

*Answer: C*

8. *Debit to expense means:*

A. Expense increases

B. Expense decreases

C. Asset increases

D. Liability increases

*Answer: A*

9. *Trial balance purpose:*

A. Calculate net income

B. Prove debits = credits

C. Prepare tax return

D. Close books

*Answer: B*

10. *Adjusting entry for accrued salaries:*

A. Dr Cash, Cr Salaries Expense

B. Dr Salaries Expense, Cr Salaries Payable

C. Dr Salaries Payable, Cr Cash

D. Dr Retained Earnings, Cr Salaries Expense

*Answer: B*

11. *FIFO vs LIFO in rising prices: FIFO gives:*

A. Lower net income, lower inventory

B. Higher net income, higher inventory

C. Lower net income, higher inventory

D. Same result

*Answer: B*

12. *Book value of asset =*

A. Cost – Accumulated Depreciation

B. Market value

C. Replacement cost

D. Salvage value

*Answer: A*

13. *Unearned revenue is:*

A. Asset

B. Liability

C. Revenue

D. Equity

*Answer: B*

14. *Which statement shows financial position at a point in time?*

A. Income Statement

B. Balance Sheet

C. Cash Flow Statement

D. Statement of Retained Earnings

*Answer: B*

15. *Double-entry accounting means:*

A. Two sets of books

B. Every transaction affects at least 2 accounts

C. Record twice for accuracy

D. Debit twice, credit once

*Answer: B*

---

*Section 2: Basic Economics – 10 Qs*

16. *Opportunity cost is:*

A. Historical cost

B. Value of next best alternative forgone

C. Sunk cost

D. Fixed cost

*Answer: B*

17. *Law of demand: Price ↑, Quantity demanded:*

A. Increases

B. Decreases

C. Stays same

D. Zero

*Answer: B*

18. *Price elasticity >1 means demand is:*

A. Inelastic

B. Elastic

C. Unit elastic

D. Perfectly inelastic

*Answer: B*

19. *GDP measures:*

A. Total income of citizens

B. Total market value of goods/services produced in country

C. Government spending

D. Net exports

*Answer: B*

20. *In recession, Fed typically:*

A. Raises interest rates

B. Lowers interest rates

C. Increases taxes

D. Reduces money supply

*Answer: B*

21. *Monopoly has:*

A. Many sellers

B. One seller, high barriers to entry

C. Price takers

D. Homogeneous products

*Answer: B*

22. *CPI measures:*

A. Producer prices

B. Consumer price inflation

C. GDP growth

D. Unemployment

*Answer: B*

23. *Fiscal policy is controlled by:*

A. Federal Reserve

B. Government – taxing/spending

C. Banks

D. WTO

*Answer: B*

24. *Comparative advantage means:*

A. Produce all goods cheaper

B. Produce at lower opportunity cost

C. Absolute advantage

D. No trade

*Answer: B*

25. *Supply curve shifts right due to:*

A. Cost increase

B. Technology improvement

C. Tax increase

D. Fewer suppliers

*Answer: B*

---

*Section 3: Basic Cost Accounting – 15 Qs*

26. *Prime cost =*

A. DM + DL + FOH

B. DM + DL

C. DL + FOH

D. Total manufacturing cost

*Answer: B*

27. *Conversion cost =*

A. DM + DL

B. DL + FOH

C. DM + FOH

D. Prime + FOH

*Answer: B*

28. *Fixed cost per unit:*

A. Constant

B. Decreases as volume increases

C. Increases as volume increases

D. Zero

*Answer: B*

29. *Variable cost total:*

A. Constant

B. Changes with volume

C. Zero at zero production

D. Both B & C

*Answer: D*

30. *Direct cost example:*

A. Factory rent

B. Wood for table

C. Supervisor salary

D. Depreciation

*Answer: B*

31. *Indirect cost is:*

A. Traceable to product

B. Not traceable, allocated

C. Prime cost

D. DM

*Answer: B*

32. *Job costing used for:*

A. Oil refining

B. Custom homes

C. Soft drinks

D. Chemicals

*Answer: B*

33. *Process costing used for:*

A. Shipbuilding

B. Cement

C. Consulting

D. Advertising

*Answer: B*

34. *Contribution margin =*

A. Sales – Fixed costs

B. Sales – Variable costs

C. Sales – COGS

D. Net income

*Answer: B*

35. *Break-even point units =*

A. Fixed costs / CM per unit

B. Fixed costs / Sales

C. Sales / CM ratio

D. VC / CM

*Answer: A*

36. *Margin of safety =*

A. Actual sales – Break-even sales

B. Break-even – Actual

C. Fixed costs / CM

D. Net income

*Answer: A*

37. *Overhead allocation base should be:*

A. Random

B. Cost driver causing OH

C. Always DL hours

D. Sales

*Answer: B*

38. *Normal costing uses:*

A. Actual DM, Actual DL, Actual OH

B. Actual DM, Actual DL, Applied OH

C. Standard all

D. Estimated all

*Answer: B*

39. *Sunk cost is:*

A. Relevant for decision

B. Past cost, irrelevant

C. Future cost

D. Opportunity cost

*Answer: B*

40. *Differential cost is:*

A. Sunk cost

B. Difference between alternatives

C. Fixed cost

D. Historical cost

*Answer: B*

---

*Section 4: Basic Business Acumen & Corporate Governance – 10 Qs*

41. *Board of Directors primary duty:*

A. Day-to-day operations

B. Oversight, strategy, risk, protect shareholders

C. Prepare financials

D. Sales

*Answer: B*

42. *Audit Committee must have:*

A. CEO as member

B. All independent directors, 1 financial expert

C. CFO chair

D. Internal auditors

*Answer: B*

43. *Sarbanes-Oxley 404 requires:*

A. Tax audit

B. Management assessment + auditor attestation of ICFR

C. Cost audit

D. Inventory audit

*Answer: B*

44. *Agency problem exists between:*

A. Customers & suppliers

B. Managers & shareholders

C. Employees & vendors

D. Auditors & mgmt

*Answer: B*

45. *Whistleblower program is part of:*

A. Control Environment

B. Risk Assessment

C. Monitoring

D. Information

*Answer: A*

46. *Fiduciary duty means:*

A. Act in own interest

B. Act in best interest of others

C. Maximize short-term profit

D. Avoid all risk

*Answer: B*

47. *Stakeholders include:*

A. Shareholders only

B. Shareholders, employees, customers, suppliers, community

C. Board only

D. Government only

*Answer: B*

48. *Code of Ethics addresses:*

A. Tax rates

B. Conflicts of interest, integrity, confidentiality

C. Product pricing

D. Dividends

*Answer: B*

49. *Enterprise Risk Management per COSO includes:*

A. Financial reporting only

B. Strategy, operations, reporting, compliance risks

C. IT risks only

D. Audit risks

*Answer: B*

50. *Tone at the top refers to:*

A. CEO salary

B. Ethical culture set by board & senior mgmt

C. Office design

D. Stock price

*Answer: B*

---

*Section 5: Basic Finance Terms – 10 Qs*

51. *NPV > 0 means:*

A. Reject project

B. Accept – adds value

C. IRR < WACC

D. Payback not met

*Answer: B*

52. *WACC is:*

A. Cost of debt only

B. Weighted average cost of debt & equity

C. Return on assets

D. Dividend rate

*Answer: B*

53. *Current Ratio =*

A. Current Assets / Current Liabilities

B. Quick Assets / Current Liabilities

C. Total Debt / Equity

D. NI / Sales

*Answer: A*

54. *ROE =*

A. Net Income / Sales

B. Net Income / Total Assets

C. Net Income / Equity

D. EBIT / Assets

*Answer: C*

55. *Time value of money: $1 today > $1 future due to:*

A. Inflation + opportunity to earn

B. Tax

C. Accounting rules

D. Depreciation

*Answer: A*

56. *Bond price ↑ when interest rates:*

A. Increase

B. Decrease

C. Stay same

D. No relation

*Answer: B*

57. *Diversification reduces:*

A. Systematic risk

B. Unsystematic risk

C. Market risk

D. Interest rate risk

*Answer: B*

58. *Operating leverage high means:*

A. High variable costs

B. High fixed costs, EBIT sensitive to sales

C. Low risk

D. Low break-even

*Answer: B*

59. *Dividend payout ratio =*

A. Dividends / Net Income

B. Net Income / Dividends

C. Dividends / Sales

D. Retained Earnings / NI

*Answer: A*

60. *Treasury stock is:*

A. Stock owned by government

B. Company’s own stock repurchased

C. Preferred stock

D. Foreign stock

*Answer: B*

---

*Section 6: AIS & Business Cycles Documents – 15 Qs*

61. *AIS stands for:*

A. Accounting Internal System

B. Accounting Information System

C. Audit Information Standard

D. Asset Inventory System

*Answer: B*

62. *Revenue cycle starts with:*

A. Cash receipt

B. Customer order

C. Invoice

D. Shipment

*Answer: B*

63. *Key document in revenue cycle:*

A. Purchase order

B. Sales order

C. Receiving report

D. Time card

*Answer: B*

64. *Bill of lading is prepared by:*

A. Customer

B. Carrier – proof of shipment

C. Sales dept

D. Accounting

*Answer: B*

65. *Remittance advice accompanies:*

A. Sales order

B. Customer payment

C. Purchase requisition

D. Invoice

*Answer: B*

66. *Purchase cycle starts with:*

A. Invoice from vendor

B. Purchase requisition

C. Payment

D. Receiving report

*Answer: B*

67. *PO stands for:*

A. Payment Order

B. Purchase Order

C. Production Order

D. Payroll Order

*Answer: B*

68. *Three-way match in purchase cycle:*

A. PO, Invoice, Check

B. PO, Receiving Report, Vendor Invoice

C. Requisition, PO, Invoice

D. Quote, PO, Payment

*Answer: B*

69. *Receiving report is prepared by:*

A. Purchasing dept

B. Receiving dept upon goods receipt

C. Vendor

D. Accounting

*Answer: B*

70. *Payroll cycle key document:*

A. Sales invoice

B. Time card/Time sheet

C. Purchase order

D. Packing slip

*Answer: B*

71. *W-4 form used for:*

A. Employee tax withholding info

B. Employer tax payment

C. Vendor payment

D. Customer credit

*Answer: A*

72. *Control in revenue cycle:*

A. No credit checks

B. Segregation: Order entry, credit, shipping, billing, cash

C. Same person ships & bills

D. No invoices

*Answer: B*

73. *Purchase cycle fraud red flag:*

A. Three-way match done

B. Vendor address = employee address

C. Approved PO

D. Receiving report signed

*Answer: B*

74. *Payroll fraud type:*

A. Kiting

B. Ghost employee

C. Lapping

D. Channel stuffing

*Answer: B*

75. *AIS output includes:*

A. Financial statements, management reports

B. Source documents only

C. Journal entries only

D. Bank statements

*Answer: A*

---

*Section 7: Org Structure & Technology/Data Analytics – 25 Qs*

76. *Functional org structure groups by:*

A. Products

B. Function: Marketing, Finance, Production

C. Geography

D. Customers

*Answer: B*

77. *Matrix structure has:*

A. Single boss

B. Dual reporting – function & project

C. No hierarchy

D. Outsourced

*Answer: B*

78. *Span of control means:*

A. Number of levels

B. Number of subordinates per manager

C. Company size

D. Budget size

*Answer: B*

79. *Centralized decision making:*

A. Fast, local response

B. Decisions at top, consistent

C. Low control

D. Empowerment

*Answer: B*

80. *ERP system benefit:*

A. Data silos

B. Integrated database, real-time info

C. Manual entry

D. Multiple systems

*Answer: B*

81. *Database vs Spreadsheet: Database better for:*

A. Small ad-hoc analysis

B. Large volume, multi-user, data integrity

C. Charts

D. One-time calc

*Answer: B*

82. *Data warehouse is:*

A. Transaction processing

B. Central repository for analytics & reporting

C. Backup system

D. Email server

*Answer: B*

83. *Big Data 3 V’s:*

A. Value, Verify, Validate

B. Volume, Velocity, Variety

C. Visual, Verbal, Vital

D. Vendor, Version, View

*Answer: B*

84. *Descriptive analytics answers:*

A. What will happen?

B. What happened?

C. Why did it happen?

D. What should we do?

*Answer: B*

85. *Predictive analytics answers:*

A. What happened?

B. What will happen?

C. What should we do?

D. Why it happened?

*Answer: B*

86. *Prescriptive analytics answers:*

A. What happened?

B. What should we do?

C. What will happen?

D. Why it happened?

*Answer: B*

87. *RPA stands for:*

A. Risk Planning Analysis

B. Robotic Process Automation

C. Revenue Per Asset

D. Return on Process

*Answer: B*

88. *RPA best for:*

A. Judgment tasks

B. Repetitive, rule-based, high-volume tasks

C. Creative work

D. Strategy

*Answer: B*

89. *Data visualization tool example:*

A. Word

B. Tableau, Power BI

C. Outlook

D. Notepad

*Answer: B*

90. *Blockchain feature:*

A. Centralized

B. Immutable, distributed ledger

C. Easy to alter

D. Slow

*Answer: B*

91. *Cybersecurity CIA triad:*

A. Control, Insight, Audit

B. Confidentiality, Integrity, Availability

C. Cost, Income, Assets

D. Check, Inspect, Approve

*Answer: B*

92. *Phishing is:*

A. Hardware failure

B. Social engineering via fake emails

C. Software bug

D. Network speed issue

*Answer: B*

93. *Cloud computing benefit:*

A. High upfront cost

B. Scalability, pay-as-you-go

C. No internet needed

D. Less secure

*Answer: B*

94. *Data governance includes:*

A. Data quality, security, privacy, ownership

B. Only backups

C. Only reporting

D. Hardware purchase

*Answer: A*

95. *Structured data example:*

A. Emails

B. Database table with rows/columns

C. Video

D. Social media posts

*Answer: B*

96. *Unstructured data example:*

A. Excel table

B. PDF contract, images, audio

C. GL account list

D. Inventory master

*Answer: B*

97. *Dashboard key feature:*

A. 100 pages of data

B. Visual, KPI, real-time, drill-down

C. Text only

D. Annual only

*Answer: B*

98. *IT General Controls include:*

A. Input validation

B. Access security, change management, backup

C. Sales order entry

D. Payroll calc

*Answer: B*

99. *Application controls include:*

A. Firewall

B. Input edit checks, batch totals, reasonableness checks

C. Physical security

D. Backup

*Answer: B*

100. *Data mining is used to:*

A. Store data

B. Discover patterns/trends in large datasets

C. Delete data

D. Backup data

*Answer: B*

---

*Answer Key*:

1B 2A 3B 4B 5B 6A 7C 8A 9B 10B 11B 12A 13B 14B 15B 16B 17B 18B 19B 20B 21B 22B 23B 24B 25B 26B 27B 28B 29D 30B 31B 32B 33B 34B 35A 36A 37B 38B 39B 40B 41B 42B 43B 44B 45A 46B 47B 48B 49B 50B 51B 52B 53A 54C 55A 56B 57B 58B 59A 60B 61B 62B 63B 64B 65B 66B 67B 68B 69B 70B 71A 72B 73B 74B 75A 76B 77B 78B 79B 80B 81B 82B 83B 84B 85B 86B 87B 88B 89B 90B 91B 92B 93B 94A 95B 96B 97B 98B 99B 100B

www.GMSIsuccess.in

For online exam platform,casebased question ⁉️Get your performance evaluations , click here ✍️

www.finzo.pw