In order to master risks and controls and how they fit together, which of the following is NOT one of the areas to fully understand?
A. The accounting information system.
B. The description of the general and application controls that should exist in IT system.
C. The type and nature of risks in IT systems.
D. The recognition of how controls can be used to reduce risk.
Answer : C. The type and nature of risks in IT systems.
=> This is because there is no end to risk of loss of control from the IT systems and its allied parts. The IT is a vast subject to understand completely and every next time we come across with the disturbing elements connected with IT systems. Sometimes with the hardware and the other time with the software or other pereherals.
Other options ie. AIS, general and application controls of IT and identifying controls to reduce risks could be possible as of general and routine and well in command activities. But, the type and various nature of risks which are associated with IT systems are numerous and have no end. It is hard to understand completely.
=================
Get Answers For Free
Most questions answered within 1 hours.