IIA Exam IIA-CRMA Topic 6 Question 99 Discussion

Actual exam question for IIA's IIA-CRMA exam

Question #: 99
Topic #: 6

With regard To IT governance, which of the following is the most effective and appropriate role for the internal audit activity?

AIndependently evaluate the skills and experience of potential chief information officer candidates to assess the best fit based on the organization's risk appetite.

BEvaluate the organization's governance standards and assess IT-related activities to identify gaps and develop policies, ensuring alignment with the organization's risk appetite.

CAssist management in interpreting complex IT-related privacy and security risk exposures and evaluating potential mitigation strategies.

DAssess whether governance activities are aligned with the organization's risk appetite and take into consideration emerging risks.

Show Suggested Answer

Suggested Answer: C

by Jenelle at Mar 21, 2025, 12:33 AM

Limited Time Offer

25%

Off

Get Premium IIA-CRMA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Daniela

4 days ago

Option B is the way to go. It's like the internal audit team is the IT governance equivalent of a Swiss Army knife - versatile, efficient, and ready to tackle any challenge. Now, where's my duct tape and Swiss Army knife when I need them?

upvoted 0 times

...

Hubert

5 days ago

Option B is the clear winner here. It's like the internal audit team is the IT governance equivalent of a superhero, swooping in to save the day by aligning everything with the organization's risk appetite. Bam!

upvoted 0 times

...

Jolanda

6 days ago

While the other options are relevant, Option B stands out as the most effective and appropriate role for the internal audit activity. It's like the Swiss Army knife of IT governance - covering all the bases!

upvoted 0 times

...

Laurel

7 days ago

I agree with Julianna. Option B is the best choice as it focuses on evaluating the overall governance framework and ensuring it aligns with the organization's risk appetite, which is crucial for effective IT governance.

upvoted 0 times

...

Frankie

12 days ago

I believe that assessing whether governance activities are aligned with the organization's risk appetite is crucial. It helps in considering emerging risks and making informed decisions.

upvoted 0 times

...

Julianna

13 days ago

Option B seems to be the most comprehensive and appropriate role for the internal audit activity in IT governance. It covers the assessment of governance standards, identification of gaps, and the development of policies to ensure alignment with the organization's risk appetite.

upvoted 0 times

...

Sanda

14 days ago

I agree with you, Jesusita. It's important to identify gaps and develop policies to ensure alignment with the organization's risk appetite.

upvoted 0 times

...

Jesusita

16 days ago

I think the most effective role for internal audit in IT governance is to evaluate governance standards and assess IT-related activities.

upvoted 0 times

...