Question 1
When making a preliminary assessment of control risk, the starting point for most auditors is
◦ IT assessment controls.
◦ assessment of entity level controls.
◦ transaction-related controls.
◦ fraud controls.
Question 2
Which deficiency exists if a necessary control is missing or
not properly implemented?
◦ control
◦ significant
◦ design
◦ operating