1. Standards for the professional practice of internal auditing include

_____________ standards, _____________ standards, and ____________

standards.

2. IT management processes, as defined in the COBIT Framework include

_____________objectives, _____________ practices, _____________ guidelines,

and _____________guidelines.

3. COSO defined five components that would assist management in achieving

internal control objectives. These include: Sound _____________ Environment,

Sound _____________Assessment, Sound _____________ and _____________

Systems, Sound _____________ Control Activities, and Process Effective

_____________.

4. ______________ and ___________ are the statement of corporate intent.

5. _____________ are high-level and detailed generic statements of minimum good

control.

6. _____________ are practical rationales and how-to-implement guidance for the

control objectives.

7. _____________ provide guidance for each control area on how to obtain an

understanding, evaluate each control, assess compliance, and substantiate the risk

of controls not being met.

8. _____________ provide guidance on how to assess and improve IT process

performance, using maturity models, metrics, and critical success factors.

9. Internal control was defined by the Committee of Sponsoring Organizations

(COSO) as a broadly defined process, effected by _____________.

10. For a sound control environment to be effective, proper assignment of authority

and responsibility coupled with the proper _____________ of available resources is

required.