According to IIA guidance, which of the following would the internal audit activity examine in order to evaluate the organization’s governance process for strategic and operational decisions?
A.
The risk assessment process, including interviews with senior management.
B.
The organization’s mission and value statements, code of conduct, and whistleblowing policy.
C.
Board meeting minutes, the board policy manual, and past audit reports.
D.
Staff compensation, objective setting, and the performance evaluation policy and process.
The question asks:
What should Internal Audit examine to evaluate the organization’s governance process for strategic and operational decisions according to IIA guidance?
Strong governance—especially for strategic and operational decisions—relies on:
Clear direction (mission, values)
Ethical expectations (code of conduct)
Mechanisms for accountability and transparency (whistleblowing)
These documents define how decisions should be made, what values should guide them, and how issues are escalated, which are core governance elements.
Mission statement → strategic direction
Values & code of conduct → decision-making principles and ethics
Whistleblowing policy → accountability, transparency, ethics reporting mechanism
These are fundamental components of governance evaluation.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
3673acf
1 week, 3 days ago