Information Technology Flashcards

Question

How can IT influence cost leadership?

Answer 1

1. Reduce costs, improves efficiency of production and delivery systems 2. Intense price completion due to the internet being available to almost everyone. So because of this, there could be shifts away from low cost to produce differentiation instead.

Answer 2

Management information system. Supports routine management problems.

Answer 3

Accounting Information System and is the subset of MIS. It pulls financial data from transaction processing systems to create financial statements and management control reports (I..e A/R agin). Yardi is an AIS.

Answer 4

Decision Support Systems - provides info to managers to assist in managing non-routine issues and LT planning

Answer 5

Executive Support System - subset of DSS that are especially designed for forecasting and making long range strategic decisions, and they place greater emphasis on external data.

Answer 6

The types of decisions that need to be made

Answer 7

Bad/antiquated.

Answer 8

Archive of an organizations operational transactions (sales, purchases, production, payroll) over a period of years

Answer 9

Yes, external data that might be correlated with these transactions, such as economic indicators, stock prices, and exchange rates, is included.

Answer 10

process of performing statistical analysis and automatically searching for patterns in large volumes of data

Answer 11

specialized version of a data warehouse that contains data that is pre-configured to meet the needs of specific departments.

Answer 12

Drill down. Which means he needs to move from summary to detailed information to determine its cause.

Answer 13

Midaleware

Answer 14

Fields - also known as attributes

Answer 15

Files are composed of: Records: are composed of: Fields: are composed of Data Values: are composed of Bytes (characters) are composted of: Bits: smallest element of storage in computer system

Answer 16

Microcomputers are better suited to frequent screen updating and graphical user interfaces.

Answer 17

Not a ton of storage, but has great security

Answer 18

Random access memory - temporary data store

Answer 19

efficient way to store and retrieve individual records (secondary storage)

Answer 20

Read only memory - permanently store data needed to power on computer

Answer 21

central processing uint - control center of the computer system and had 2 d principal components.

Answer 22

online real time system - example would be what is use for airline reservations.

Answer 23

Computerized counter part of ledgers found in manual systems.

Answer 24

They maintain balances by accounts (financial statement accounts, customer accounts, vendor accounts, etc) they perform the same function as ledgers (and subsidiary ledgers) do in manual systems.

Answer 25

Adoption of loT.

Answer 26

Reduce abandonment rates. Abandonment is the rate at which customers abandon purchases at check out.

Answer 27

Multifactor authentication. The key word here is partially. Although this is a biometric authentication.. this is only a portion of the authentication.

Answer 28

Attach sensors to glasses or helmets and are therefore a type of loT device.

Answer 29

Accounting controls

Answer 30

1. Real time system monitoring 2. Visualizing 3. Video conferencing

Answer 31

Creation, analysis, storage, and dissemination of extremely large data sets. It is possible now because of technologies like cloud data. It also changes a company's risk profile.

Answer 32

Underused data.

Answer 33

"Internet f Things" and is also an example of big data.

Answer 34

Dark data, multifactor identification data, video conferencing data.

Answer 35

It's a traditional data source.

Answer 36

1. Target marketing 2. Improved system monitoring 3. Better compliance

Answer 37

No, big data projects are expensive and therefore IT cost savings from big data are unlikely.

Answer 38

1. Assessing quality and integrity of big data 2. Integrating big data into evolutions of internal control 3. Data scientists *They do not hold the responsibility for building them

Answer 39

Big Data uses existing data warehouses, but data warehousing is not a direct enabler of big data.

Answer 40

Analytics, dark data, loT

Answer 41

It is an intangible asset. It has value but no physical form. It is a form of electronic cash. The IRS taxes it as property. It is decentralized and not under the control of the government.

Answer 42

Peer-to-peer network

Answer 43

Yes - particularly the Ponzi scheme.

Answer 44

It is a decentralized, distributed ledger. It is a non-modifiable audit trail of transactions. Everyone in the peer to peer "network" can always log, view and confirm. It is an electronic file that consists of blocks.

Answer 45

Continuous monitoring. Blockchain is an excellent example of new technology that enables continuous monitoring of the accounting system.

Answer 46

Reduced auditing and compliance costs are an important outcome of the use of blockchain. Since the accounting transaction are stored on an automated, secured network, then auditing and compliance costs should go down.

Answer 47

Include reasoning and judgement abilities that do not exist in most applications. It can be biased.

Answer 48

IBM's Watson system. It is used by KPMG to generate predictive analytics that help clients identify and manage F/S risk.

Answer 49

Fast computers and big data.

Answer 50

Machine learning.

Answer 51

Confirmation bias, privacy issues, prediction bias.

Answer 52

Preparing F/S is a standardized task that is least likely to be mostly automated into the AI system.

Answer 53

1. Working w/ an AI to harvest and clean data for use in predicting fraud risk. 2. Working on a legacy system with AI assistance, that is uneconomical to replace with AI technology 3. Develop and AI system to analyze the risk of investing in the extraction industry.

Answer 54

Management must know and understand which systems are critical to organizational objectives an understand which systems are most valuable to the organization.

Answer 55

SR management should lead the initiative and collage with business and IT stakeholders.

Answer 56

Because cyber criminals often engineer industry specific attacks.

Answer 57

The entity's external auditors.

Answer 58

Should attempt to prevent cyber breaching with preventative controls but also address those that occur through detect and corrective controls.

Answer 59

1. Identify 2. Protect 3. Detect 4. Respond 5. Recover

Answer 60

- Identify and catalog external information systems - Protect data at rest - Investigate notifications from detection systems.

Answer 61

Tier 1 - Partial Tier 2 - Risk informed Tier 3 - Repeatable Tier 4 - Adaptive

Answer 62

The element categories and the function identify. The organization is exploring how is it doing? at a higher level related to cyber security. Function "identify" because the focus is on high level objectives and element is categories.

Answer 63

Decentralized since IT services are likely to be less under the control of management.

Answer 64

1. Security 2. Availability 3. Processing Integrity 4. Confidentiality 5. Privacy

Answer 65

Availability

Answer 66

Processing integrity

Answer 67

Includes the implementation of multiple control layers. An example would be if an organization implements an integrated package of authentication controls related to critical systems.

Answer 68

Confidentiality

Answer 69

A set of criteria to guide best practices related to data privacy.

Answer 70

Disaster recovery preparation, which is a subcategory of IT policies.

Answer 71

No, not necessarily .

Answer 72

Statement of IT performance standard.

Answer 73

Policy related to employee use of the Internet, intranet, e-mail, etc.

Answer 74

Guarding against physical or electronic threats to IT

Answer 75

Includes EDI, supply change management (SCM) and EFT.

Answer 76

Selling to consumers using the internet and web based technology.

Answer 77

Interact withe employees through portals and intranets.

Answer 78

G stands for government. Providing property tax data online, paying parking tickets online, online contract bidding.

Answer 79

Provide a product or service.

Answer 80

System availability, non repudiation, failure to trust trading partners, establishing identity and authenticity, privacy of customers info, secure exchange for payment of goods/services.

Answer 81

Electronic data interchange - system to system exchange of business data (I.e. purchase orders, confirmations, invoices, etc) in structured formats that allow direct processing of the data by the receiving system. For example - Commerical cafe

Answer 82

Customer relationship management - provides tools to analyze the information and develop personalized marketing plans for individual customers.

Answer 83

Electronic cash, smart cards, paypal

Answer 84

Increased security

Answer 85

Transmission and when stored.

Answer 86

Hardware encryption is inherently more secure than software based encryption. Software can be more easily accessed and altered than hardware.

Answer 87

CEO of small entities will have hands on involvement with all levels of personnel.

Answer 88

Within the entity. This is not an example of IT outsourcing.

Answer 89

It is behind an entity's firewall.

Answer 90

Require considering and integrating relevant business process, a deployment model, and a service delivery model.

Answer 91

When the firm who purchases CSP regularly requests and receives data about the system's performances of CSP.

Answer 92

Spreadsheets as part of a small business computing should be reviewed and tested by an independent 3rd party to ensure they operate as expected.

Answer 93

Authorization. There is a great need for a 3rd party review and testing within the small business computing environment.

Answer 94

Locking doors when offices are open and removing storage devices to secure locations.

Answer 95

1. Independent 3rd party review is especially important. 2. Back up procedures are important 3. Additional supervision of computing may be necessary

Answer 96

Example of online analytical processing. Combines data into subject oriented, integrated collection of data used to support the management decision making process.

Answer 97

When large volumes of data are generated at many locations and fast access is required. It is useful when processing is done in multiple locations. It enables the processing of large volume of transactions and fast access to data.

Answer 98

A system that distributes processing to local units but also maintains a centralized database.

Answer 99

A system that allows for more customization to meet the needs of location operations.

Answer 100

Similar to M:Drive - can remove in, bit it is all centralized in one location.

Answer 101

A central server is not required. It is simple, expensive, and used by LANs.

Answer 102

Network confined to limited geographic area and are dedicated lines.

Answer 103

National/international network that are on public or shared lines. This is the most appropriate type of network for a company that needs its network to function inexpensively in widely separated geographical areas.

Answer 104

A device connected to a computer network.

Answer 105

Low cost comparatively low quality transmission media

Answer 106

Open to an organization's associates (company suppliers, customers, business partners, etc) to access data that is relevant to them.

Answer 107

Core markup language (a way of tagging text) for Web Pages.

Answer 108

Data control protocol/internet protocol that is the control transmission on the internet.

Answer 109

specifically designed to exchange financial info over the WW web

Answer 110

Have the ability to do much more sophisticated checks and provide much better control (thats network firewall fo example)

Answer 111

Perform relatively low level filtering capabilities.

Answer 112

Commands used to control which users have various privileges relating to a database. For example, who is able to read from and write to various portions of the database.

Answer 113

Headers. This has nothing to do with the formal of a word processing document - but the title was misleading.

Answer 114

Middle Floor.

Answer 115

Preventative control. It prevents unauthorized individuals from gaining physical access to the system.

Answer 116

Secure Electronic Transactions. These protocols are used for credit card payments so that the merchant can securely transmit payment payment information and authenticate.

Answer 117

Text that has been mathematically scrambled so its meaning cannot be determined without the use of an algorithm key.

Answer 118

Virtual Private Network. It is a secure way to create an encrypted communication tunnel to allow remote users and encryption to prevent unauthorized users from intercepting data.

Answer 119

Both public and private keys. Public key can only decrypt messaged encrypted with a private key and vice versa.

Answer 120

Digital certificates. They provide a higher level of reliability than a digital signature.

Answer 121

An independent background check is completed ton confirm the identify of the requesting entity.

Answer 122

Uses public/private key encryption technology to provide means of authenticating messaged delivered I a networked environment.

Answer 123

The receiver.

Answer 124

No computers. Cheap. Off-site location.

Answer 125

Has computers, not back up data. Costs a little more money than a cold site but less than a hot site.

Answer 126

Has everything and is a near immediate operation. More expensive than a warm.

Answer 127

Fully redundant and the most expensive. It is fully staged with real time replication.

Answer 128

Mission critical tasks.

Answer 129

Cold site. The hardware and records are being delivered after the occurrence of a disaster.

Answer 130

Collecting names and locations of key vendors, current hardware configuration, names of team members, and finding an alternative processing location.

Answer 131

A firm should maintain at least one remote archive offsite.

Answer 132

This is common with batch processing. It is the point where processing accuracy is verified. There are periodic backups and if there is a problem, you would be able to return to the most recent checkpoint and restart. (Like and iPhone backup - when you back up to the cloud, you can return to the point where the last back up was)

Answer 133

Common to online, real time processing. There is a record processing transaction in a log. Periodically record master file contents and if there is a problem, you return to the good master file and reprocess subsequent transactions.

Answer 134

They operate despite component failure.

Answer 135

Computer clusters designed to improve service availability which is common in e-commerce.

Answer 136

Automated, outsource to experts, off site, and can be continuous

Answer 137

Storage Area Networks which replicate data from multiple sites. Date is immediately available. This is efficient storage for services.

Answer 138

Maintaining an exact copy of the data set. It is stored in the same original format and not zipped. It is very fast, but it is very expensive.

Answer 139

Malware program that allows an unauthorized user to gain access to the system by side stepping the normal logon procedures.

Answer 140

Prevents legitimate users from accessing the system by flooding the server with incomplete access requests.

Answer 141

Program planted in system and is dormant until an event or time.

Answer 142

Virus - which is an unauthorized program that copies itself and damages data. Worm - virus that replicates across systems, I.e. by sending email floods.

Answer 143

Program hidden inside a benign file and can insert itself back door. It appears to be legitimate, but performs illicit activity when its run.

Answer 144

They capture packets of data s they move across a computer network. They are used to monitor performance and trouble shoot problems. However, they can also be used by hackers to capture usernames/passwords and other info to help them hack the network.

Answer 145

Impersonates sender and receiver.

Answer 146

Transfers tiny amounts (penny or less) from a large # of accounts.

Answer 147

Access by tricking employees. An example would be "phishing" which sends spoofed emails with fraudulent websites to fool people entering financial/identification information.

Answer 148

Interviews Quick questionnaires Observations Systems documentation

Answer 149

Production

Answer 150

The process of authorizing changes, approving tests results, and copying development programs to a production library.

Answer 151

Change control

Answer 152

Source program library management system. The functions include storing, retrieving, deleting, and documenting by who, where, and how programs are changes.

Answer 153

1. Systems Documentation 2. Program Documentation 3. Operating Documentation 4. User Documentation

Answer 154

Questionnaires, narratives, data flow diagrams, flowcharts, decision tables, and entity relationship

Answer 155

Source Program Library - critical tot he internal control system by securing/archiving computer programs in a library, and separating them from live programs by storing the library offset.

Answer 156

Shows the program and data files, processing logic and interactions w/ other program. (narratives, flow charts)

Answer 157

Detailed analysis of the inputed data, logic, and output of software. (flowcharts, source code listings, and record layouts)

Answer 158

"run manual" - necessary info to execute the program (equipment, data files, computer supplies, execution commands, error messages, verifications, expected output)

Answer 159

Documents system in language so that an end user can understand when to submit data and request reroutes + procedures for verifying the accuracy of data and correcting errors.

Answer 160

1. Required by law 2. Facilitates building and evaluating complex systems 3. Training 4. Improve system survival and sustainability 5. System Audits 6. Process re-engineering.

Answer 161

Concern the accuracy, validity, and completeness of data processing in specific application programs. Examples are input and origination controls, processing and file controls, and output controls.

Answer 162

Whether it is batch or OLRT processing.

Answer 163

1. Validity - transactions are authorized with no duplicates and no fictitious transactions 2. Completeness - All transactions have been captured 3. Accuracy - data has been correctly transcribed, account codes are correct, and all data fields present.

Answer 164

``` Missing data check Field check Limit test (rang/sign test) Validity Test Check digit (used for batches) Logic/Reasonableness Test Sequent Check Key Verification Closed loop verification Batch control totals (financial, hash, record counts) Reprinted forms and pre-perfomatted screens Default values Automated data controls ```

Answer 165

Logic/Reasonableness Test

Answer 166

Valid/validity test

Answer 167

Closed loop verification

Answer 168

Bank clerk enters account # and customer into pop ups which ensures $$ goes into correct account.

Answer 169

Simple count the number of records in a batch. For example: ``` Invoice #: 101 102 103 104 105 ``` Record count is 5.

Answer 170

Processing method

Answer 171

Run to run controls Internal labels ("header/trailer" records) Audit Trail controls

Answer 172

Master files, standing data, transaction files, system control parameter files

Answer 173

Ensure that access, change, or destruction of data and storage media is authorized.

Answer 174

``` Parity check Read after write check Echo check Error reporting and resolution Boundary protection Internal labels External labels Version control File Access and Updating Controls ```

Answer 175

Parity Check

Answer 176

Boundary Protection

Answer 177

``` Spooling (print queue) controls Disposal of aborted print jobs Distribution of reports End user controls Logging and archiving Record retention and disposal ```

Answer 178

A computer log.

Answer 179

By recording business transactions in the form of journal entries.

Answer 180

They are first recorded in general journals. Then they are posted to ledger accounts.

Answer 181

The financing cycle contributes funds to the expenditure cycle, which contributes RM to the production cycle.

Answer 182

Revenue and Financing. Revenue receives cash from sales and financing receives cash from financing activities (creating debt & equity for example)

Answer 183

Sales -> Ship/Deliveries -> Accounts Receivable -> Getting Cash

Answer 184

Sales invoice.

Answer 185

Identifies the items to be pulled for a sales order.

Answer 186

The authorization for and terms of a shipping agreement. It is the legal contract between seller and shipper.

Answer 187

Matching payments and invoices.

Answer 188

It allows for all purchase orders to be checked by a separate receiving department which should detect mis-delivered orders.

Answer 189

Used in production and identifies part #'s, descriptions, and quantities of each component in making a product.

Answer 190

Match the bill of materials to goods produced to detect over/underuse of materials

Answer 191

Authorizes moving raw materials from a store room to production.

Answer 192

Match the ticket to physical materials in production to ensure that goods are not lost, stolen, damaged, or over-underused in production.

Answer 193

Identify parts to be transferred into or between the production process.

Answer 194

Sequence of steps to make a product, which equipment tot use, and how long each step requires.

Answer 195

Materials requisition ticket.

Answer 196

Reduced excess production of inventory.

Answer 197

YTD gross pay, net pay and deduction by employee.

Answer 198

Review the register & match it to pay rates by supervisors to confirm OT and regular rates.

Answer 199

Quarterly federal tax return showing all wages subject to tax and amounts withheld for income tax and FICA.

Answer 200

collect but not pay the payroll tax deducted from an employee's paycheck

Answer 201

Physical checks deposited by someone other than an employee.

Answer 202

Matching employee skills to a new job duty.

Answer 203

Lower fraud risk.

Answer 204

Transfer balances from temporary accounts to R/E

Answer 205

Master account for subsidiary accounts, which must, in the aggregate sums to the total control balance.

Answer 206

All direct contact with end users and for developing overall program logic and functionality.

Answer 207

They work under the lead system analyst and are responsible for writing and testing a program

Answer 208

1. Planning and Feasibility 2. Analysis 3. Design 4. Development 5. Testing 6. Implementation 7. Maintenance

Answer 209

the technical, economic, and operational feasibility of new system.

Answer 210

Analysts work with end users to understand requirements of a new system.

Answer 211

Technical and design specifications

Answer 212

Use design specifications to develop program and data files

Answer 213

Testing to see if it meets design specifications

Answer 214

4 different types: Parallel - run new and old system Cold Turkey - drop old system, starting using new one in its place Phased implementation Pilot implementation - users are divided into smaller groups and trained on group at a time.

Answer 215

Make sure system is working properly and make any updates based on current need.

Information Technology Flashcards

(247 cards)