Practice free →
HomeCA FinalauditingSpecial Aspects of Auditing in an Automated Environment › Which is NOT a "Type 1" automated environment ri…

Which is NOT a "Type 1" automated environment risk?

AUser-acceptance test sign-off documentation gaps
BUnauthorised changes to programs
CInadequate segregation in IT roles
DWeak password policies
Answer & Solution
Correct answer: A. User-acceptance test sign-off documentation gaps
1. Type 1 risks relate to access, change management and IT operations. 2. UAT sign-off documentation gaps are a project-management deficiency, not a Type 1 IT risk. 3. The other three map directly to standard GITC categories. _Source: ICAI BoS CA Final Paper 3, Ch 4 "Special Aspects of Auditing in an Automated Environment"_
Solve this in the app — CA Final practice & 24k+ MCQs →
Related questions