CPA - ISC S4 Exam Questions and
Answers
SOC 3 - ANSWER-Similar to SOC 2, but for general users
-does not include a description of the system, SA's test of controls, and the results
thereof
Type 1 SOC - ANSWER-A report on the fairness of the presentation of
management's description of the service organization's system and the suitability of
the design of the controls to achieve the related control objectives included in the
description as of a specific date
Type 2 SOC - ANSWER-a report on the fairness of the presentation of
management's description of the service organization's system and the suitability of
the design and operating effectiveness of the controls to achieve the related control
objectives included in the description throughout a specified period
5 trust services criteria - ANSWER--Security
-Avaliability
-Privacy
-Confidentiality
-Process Integrity
(CAPPS)
5 components of COSO - ANSWER-- Control Environment
- Risk Assessment
- Control Activities
-Information and Communication
- Monitoring Activities
Confidentiality - ANSWER-information designated as confidential is protect to meet
the entity's objectives
Availability - ANSWER-information and systems are available for operation and use
to meet the entity's objectives
Processing Integrity - ANSWER-System Processing is complete, valid, accurate,
timely, and authorized to meet the entity's objectives
Privacy - ANSWER-personal information is collected, used, retained, disclosed, and
disposed of to meet the entity's objectives
Security - ANSWER-Information and systems are protected against unauthorized
access; unauthorized disclosure of information; and damage to systems that could
Answers
SOC 3 - ANSWER-Similar to SOC 2, but for general users
-does not include a description of the system, SA's test of controls, and the results
thereof
Type 1 SOC - ANSWER-A report on the fairness of the presentation of
management's description of the service organization's system and the suitability of
the design of the controls to achieve the related control objectives included in the
description as of a specific date
Type 2 SOC - ANSWER-a report on the fairness of the presentation of
management's description of the service organization's system and the suitability of
the design and operating effectiveness of the controls to achieve the related control
objectives included in the description throughout a specified period
5 trust services criteria - ANSWER--Security
-Avaliability
-Privacy
-Confidentiality
-Process Integrity
(CAPPS)
5 components of COSO - ANSWER-- Control Environment
- Risk Assessment
- Control Activities
-Information and Communication
- Monitoring Activities
Confidentiality - ANSWER-information designated as confidential is protect to meet
the entity's objectives
Availability - ANSWER-information and systems are available for operation and use
to meet the entity's objectives
Processing Integrity - ANSWER-System Processing is complete, valid, accurate,
timely, and authorized to meet the entity's objectives
Privacy - ANSWER-personal information is collected, used, retained, disclosed, and
disposed of to meet the entity's objectives
Security - ANSWER-Information and systems are protected against unauthorized
access; unauthorized disclosure of information; and damage to systems that could