ACCOUNTING INFORMATION SYSTEMS
INTERNATIONAL EDITION BY VERNON 2026
PRACTICE TEST PACK COMPLETE SOLUTIONS
VERIFIED INSIGHTS
◉ We define corporate ______ as a set of processes and policies in
managing an organization with sound ethics to safeguard the
interests of its stakeholders.
Answer: governance
◉ Select a correct statement regarding control frameworks.
-The most current COSO internal control framework focuses on
enterprise risk management (ERM).
-COSO enterprise risk management framework is the oldest internal
control framework established by COSO.
-The original COSO internal control integrated framework was
created more than 20 years ago.
Answer: The original COSO internal control integrated framework
was created more than 20 years ago.
◉ ______ controls require compliance with preferred procedures to
deter undesirable issues from happening.
Answer: Preventive
,◉ IT Governance Institute (ITGI) developed a control framework for
the governance and management of enterprise IT. This framework,
______, provides management with an understanding of risks
associated with IT and bridges the gap between business among
risks, control needs, and technical issues.
Answer: COBIT
◉ True or false: The control objectives for information and related
technology (COBIT) framework is an internationally accepted set of
best IT security and control practices and is required by PCAOB to
be used for SOX section 404 audit.
Answer: False.
Reason: The control objectives for information and related
technology (COBIT) framework is an internationally accepted set of
best IT security and control practices. SOX requires public
companies to choose a framework in evaluating controls. However,
the PCAOB or SOX did not require any specific control framework to
be used in evaluating internal controls.
◉ Choose proper examples of detective controls. (Select all that
apply)
-Require authorization before recording a transaction.
-Prepare quarterly balance sheets and income statements.
-Prepare monthly trial balances.
,-Prepare monthly bank reconciliations.
Answer: -Prepare monthly trial balances.
-Prepare monthly bank reconciliations.
◉ While COBIT defines the overall IT control framework, another
framework, ______, provides the details for IT service management
and adopts a life-cycle approach to IT services, focusing on practices
for service strategy, service design, service transition, service
operation, and continual service improvement.
Answer: ITIL
◉ Determine the type of each internal control mechanism.
Require authorization before recording transactions <->
Prepare monthly bank reconciliations <->
Using a backup file to recover corrupted data. <->
-Preventive control
-Corrective control
-Detective control
Answer: -Require authorization before recording transactions <->
Preventive control
-Prepare monthly bank reconciliations <-> Detective control
, -Using a backup file to recover corrupted data. <-> Corrective control
◉ Choose the main purpose for each framework.
COBIT <->
ITIL <->
ISO 27000 series <->
-provides the best IT security and control practices for IT
management
-address information security issues
-provides the concepts and practices for IT service management
Answer: -COBIT <-> provides the best IT security and control
practices for IT management
-ITIL <-> provides the concepts and practices for IT service
management
-ISO 27000 series <-> address information security issues
◉ Determine the type of each internal control mechanism.
Require using user names and passwords to access the company's
network <->
INTERNATIONAL EDITION BY VERNON 2026
PRACTICE TEST PACK COMPLETE SOLUTIONS
VERIFIED INSIGHTS
◉ We define corporate ______ as a set of processes and policies in
managing an organization with sound ethics to safeguard the
interests of its stakeholders.
Answer: governance
◉ Select a correct statement regarding control frameworks.
-The most current COSO internal control framework focuses on
enterprise risk management (ERM).
-COSO enterprise risk management framework is the oldest internal
control framework established by COSO.
-The original COSO internal control integrated framework was
created more than 20 years ago.
Answer: The original COSO internal control integrated framework
was created more than 20 years ago.
◉ ______ controls require compliance with preferred procedures to
deter undesirable issues from happening.
Answer: Preventive
,◉ IT Governance Institute (ITGI) developed a control framework for
the governance and management of enterprise IT. This framework,
______, provides management with an understanding of risks
associated with IT and bridges the gap between business among
risks, control needs, and technical issues.
Answer: COBIT
◉ True or false: The control objectives for information and related
technology (COBIT) framework is an internationally accepted set of
best IT security and control practices and is required by PCAOB to
be used for SOX section 404 audit.
Answer: False.
Reason: The control objectives for information and related
technology (COBIT) framework is an internationally accepted set of
best IT security and control practices. SOX requires public
companies to choose a framework in evaluating controls. However,
the PCAOB or SOX did not require any specific control framework to
be used in evaluating internal controls.
◉ Choose proper examples of detective controls. (Select all that
apply)
-Require authorization before recording a transaction.
-Prepare quarterly balance sheets and income statements.
-Prepare monthly trial balances.
,-Prepare monthly bank reconciliations.
Answer: -Prepare monthly trial balances.
-Prepare monthly bank reconciliations.
◉ While COBIT defines the overall IT control framework, another
framework, ______, provides the details for IT service management
and adopts a life-cycle approach to IT services, focusing on practices
for service strategy, service design, service transition, service
operation, and continual service improvement.
Answer: ITIL
◉ Determine the type of each internal control mechanism.
Require authorization before recording transactions <->
Prepare monthly bank reconciliations <->
Using a backup file to recover corrupted data. <->
-Preventive control
-Corrective control
-Detective control
Answer: -Require authorization before recording transactions <->
Preventive control
-Prepare monthly bank reconciliations <-> Detective control
, -Using a backup file to recover corrupted data. <-> Corrective control
◉ Choose the main purpose for each framework.
COBIT <->
ITIL <->
ISO 27000 series <->
-provides the best IT security and control practices for IT
management
-address information security issues
-provides the concepts and practices for IT service management
Answer: -COBIT <-> provides the best IT security and control
practices for IT management
-ITIL <-> provides the concepts and practices for IT service
management
-ISO 27000 series <-> address information security issues
◉ Determine the type of each internal control mechanism.
Require using user names and passwords to access the company's
network <->
