CIA

Audit, Assurance & Ethics Assurance Engagement A professional conclusion that increases confidence for intended users. Study card → Audit, Assurance & Ethics Ethical Threats and Safeguards Identify threats to objectivity and apply safeguards. Study card → Internal Audit, Risk, Control & Compliance Internal Audit Independence Internal audit must be free from undue influence. Study card → Audit, Assurance & Ethics Audit Risk Model Audit risk comes from inherent risk, control risk and detection risk. Study card → Audit, Assurance & Ethics Materiality in Auditing A matter is material if it could influence users' decisions. Study card → Audit, Assurance & Ethics Test of Controls Testing whether internal controls operated effectively. Study card → Internal Audit, Risk, Control & Compliance Risk Appetite How much risk an organisation is willing to accept. Study card → Internal Audit, Risk, Control & Compliance Control Design vs Operating Effectiveness A control can be well designed but poorly operated. Study card → IT Audit, Cybersecurity & Information Systems General IT Controls Foundational controls that support reliable IT systems. Study card → IT Audit, Cybersecurity & Information Systems Access Control Only authorised users should access systems and data. Study card → IT Audit, Cybersecurity & Information Systems Change Management Control System changes should be authorised, tested and documented. Study card → Audit, Assurance & Ethics Audit Sampling Testing less than 100% of a population to draw a conclusion. Study card → Internal Audit, Risk, Control & Compliance Root Cause Analysis Finding why a control failure really happened. Study card → Business Strategy, Leadership & Professional Skills Professional Judgment Applying knowledge carefully in uncertain real-world situations. Study card →