A comprehensive IS audit policy should include guidelines detailing what involvement the internal
audit team should have?
A.
in the development and coding of major OS applications.
B.
in the acquisition and maintenance of major WEB applications.
C.
in the human resource management cycle of the application development project.
D.
in the development, acquisition, conversion, and testing of major applications.
E.
None of the choices.
Explanation:
The audit policy should include guidelines detailing what involvement internal audit will have in the
development, acquisition, conversion, and testing of major applications. Such a policy must be
approved by top management for it to
be effective.