Exam: ISO 22301:2019 Internal Auditor

Egzamin Summary

Ukończono 0 z 32 Pytania

Pytania:

Ukończyłeś już egzamin wcześniej. Dlatego nie można go rozpocząć ponownie.

Egzamin is loading…

You must sign in or sign up to start the egzamin.

Musisz najpierw ukończyć

Wyniki

Egzamin ukończono. Wyniki są zapisywane

Wyniki

0 z 32 Pytania poprawnych odpowiedzi

Uzyskałeś/-aś 0 z 0 punktów (0)

You have finished the exam

Current
Review
Rozwiązany
Poprawnie
Niepoprawnie

Pytanie 1 of 32
1. Pytania
Where can ISO 22301 be used?
- In all organizations, regardless of the industry and legal personality
- Tylko w organizacjach produkcyjnych
- Only in limited liability companies
- In all organizations except charities
Pytanie 2 of 32
2. Pytania
What is business continuity management?
- It is a process that takes place during a disaster
- These are activities that are performed every day to prevent an emergency
- It is a readiness to react immediately when an emergency occur
- None of the above
Pytanie 3 of 32
3. Pytania
Business Continuity Plan:
- consists of procedures that do not need to be documented
- consist of documented procedures that define how to respond in the event of an emergency
- these are documented procedures that are implemented after an emergency occurs
- these are documented procedures aimed at restoring processes to the agreed level after the occurrence of an emergency
Pytanie 4 of 32
4. Pytania
Select the correct sentences.
- A business continuity program is a process that should be supported by top management
- An incident is a situation that always leads to a crisis
- RTO – this is the time specified in the procedure, during which the failure must be absolutely removed
- RPO – this is the acceptable level of data loss expressed over time
Pytanie 5 of 32
5. Pytania
Complete the sentence: “In a business continuity system …”:
- there is no obligation to define the context of the organization
- the context of operation in relation to the environment in which the organization operates (both internal and external) should be defined
- should take into account the requirements of interested parties when defining the objectives and scope of the BCMS
- Organization may identify risks in relation to the environment in which it operates, but it is not an obligation
Pytanie 6 of 32
6. Pytania
What are the responsibilities of top management?
- Ensuring that the resources needed for the system are available
- Ensuring that the business continuity system achieves the intended results
- Supporting continuous improvement
- None of the above
Pytanie 7 of 32
7. Pytania
Business continuity management system policy:
- must be documented, necessarily in paper form
- must be consistent with the organisation's objectives
- It would be good if it include a commitment to continual improvement
- must be available inside the organization, but it is not advisable to leak it outside
Pytanie 8 of 32
8. Pytania
Complete the sentence. When planning a business continuity management system:
- it is not possible to determine the possibility of achieving the intended results
- it is important to define activities aimed at maximizing risks and minimizing opportunities
- we do not have to take into account the needs and expectations of interested parties
- None of the above
Pytanie 9 of 32
9. Pytania
Complete the sentence. Management review:
- must be performed on a regular basis (at least once every 2 years)
- must assess opportunities, improvements and the need for change, and records of the review must be kept for at least 1 year
- is performed, inter alia, to discuss the audit results, opportunities for continual improvement and the audit results
- may be performed, but there is no obligation to do it on a regular basis
Pytanie 10 of 32
10. Pytania
Which of the following documents are required by ISO 22301?
- Statement of Applicability
- Incident response procedure
- Preventive Action Procedure
- Business continuity procedure
Pytanie 11 of 32
11. Pytania
People working for the organization should be aware of:
- the amount of penalties that will be imposed on them for actions not complying with the procedures
- Business Continuity Policy
- their contribution to the business continuity system
- the benefits of using a business continuity system
Pytanie 12 of 32
12. Pytania
Which sentences are true regarding the management of system documentation?
- The latest versions of the documents must be available at the place of use
- There is no need to re-approve documents when you update documents
- Outdated documents must be kept for at least 6 months. During this time, they must be properly identified.
- The document must be approved before issuing
Pytanie 13 of 32
13. Pytania
Is there an obligation to assess business continuity risks?
- Yes, we must establish a documented risk assessment process
- Yes, we have to assess the risks. But we only need to document activities related to high-risk areas
- Yes, we have to assess the risks. And if they indicate a real threat, we must implement appropriate preventive actions
- There is no obligation, but it is wise to do so
Pytanie 14 of 32
14. Pytania
What is one of the goals of Business Impact Analysis (BIA)?
- Establish a business continuity strategy
- Determining the minimum acceptable downtime
- Risk identification
- Defining priority processes for the organization
Pytanie 15 of 32
15. Pytania
The organization shall establish, implement and maintain notification and communication procedures.
What procedure should be established for event and incident communication in a business continuity management system?
- A procedure for interpreting, escalating, maintaining and improving
- Procedure for organizing, prioritizing, approving and implementing
- Detection, analysis, response and correction procedure
- Procedure for detecting, monitoring, sharing and recording information
Pytanie 16 of 32
16. Pytania
When can we conduct an internal audit?
- Anytime, without notification
- At least once a month in the entire company
- At any time, after planning and sending notification
- In accordance to the audit programme
Pytanie 17 of 32
17. Pytania
What must be included in the audit report?
- Nonconformities – if detected
- Audit scope
- The cause(s) of detected nonconformities
- Criminal requests
Pytanie 18 of 32
18. Pytania
When can corrective actions be taken?
- Only after the audit
- After each notification of noncompliance
- After reporting by the customer or supplier a negative activity of the organization (e.g. through a complaint or remark to the way the organization operates)
- Only after Insurance Institution control
Pytanie 19 of 32
19. Pytania
What is audit?
- It is an analysis of the occurrence of defects, their causes and people guilty of negligence
- these are activities focused on targeting quality goals and defining the necessary operational processes and related resources to achieve quality goals.
- It is a systematic, independent and documented process of obtaining audit evidence and its objective assessment in order to determine the degree of meeting the audit criteria
- It is ensuring that the products delivered to the organization meet its needs
Pytanie 20 of 32
20. Pytania
During the audit it is necessary to:
- Check carefully all documents related to the QMS (quality management system)
- Check 30% of documentation
- Select a sample representing the activities
- Check the knowledge of the requirements of the standard by employees
Pytanie 21 of 32
21. Pytania
Who performs the first party audit?
- It is performed by the organization for its own needs
- It is performed by a certification body to determine whether the certification of the organisation's quality system can be maintained
- It is performed by the company's customers
- It is performed by the organization at its sub-suppliers
Pytanie 22 of 32
22. Pytania
What are the advantages of conducting an internal audit?
- It provides information about the company
- It gives information to the management about operation of the system
- It locates possible problems and nonconformist, creates an opportunity to improve the management system
- It ensures obtaining a certificate
Pytanie 23 of 32
23. Pytania
During the audit, the argument about the impossibility of carrying out some activities in the system that are required by the standard may be justified:
- Yes, due to lack of time or money
- Yes, due to the lack of people or equipment
- Yes, due to lack of knowledge
- Such an action cannot be justified
Pytanie 24 of 32
24. Pytania
What is included in the ISO 19011 standard?
- Quality management system requirements
- Guidelines for auditing management systems
- Quality management system terminology
- Guidelines for managing audit programs
Pytanie 25 of 32
25. Pytania
Mark the correct sentences for monitoring, measurement, analysis and evaluation.
- Preventive action
- Corrective action
- Correction
- None of the above
Pytanie 26 of 32
26. Pytania
Internal audit is an audit of which party?
- First
- Second
- Third
- Second, if it is provided by the supplier
Pytanie 27 of 32
27. Pytania
What do we have to do at the end of the audit?
- Closing meeting
- Summary of the audit results
- Determining the method and date of delivery of the audit report
- Drink a coffee
Pytanie 28 of 32
28. Pytania
When can corrective actions be taken?
- Only after the audit
- After each notification of noncompliance
- After reporting by the customer or supplier a negative activity of the organization (e.g. through a complaint or remark to the way the organization operates)
- only after Insurance Institution control
Pytanie 29 of 32
29. Pytania
Which of below mentioned activities are the stages of the audit?
- Opening meeting
- Closing meeting
- Preparation of the internal audit procedure
- Preparation of the internal audit procedure
Pytanie 30 of 32
30. Pytania
What principles should internal audit be based on?
- Reliability, an evidence-based approach
- Fair reporting of results
- Due professional care
- Confidentiality, independence
Pytanie 31 of 32
31. Pytania
The organization shall define, plan, implement and control the operational activities necessary to achieve its business continuity policy and objectives. What process is recommended to control these activities?
- Application management
- Project management
- Incident management
- Service level management
Pytanie 32 of 32
32. Pytania
Regarding business continuity awareness and training, what document is mandatory to define competence and performance?
- Training plan
- Business continuity strategy
- Awareness Raising Plan
- Risk assessment

Exam: ISO 22301:2019 Internal Auditor

Exam: ISO 22301:2019 Internal Auditor

Egzamin Summary

Informacje

Wyniki

Wyniki

Kategorie

1. Pytania

2. Pytania

3. Pytania

4. Pytania

5. Pytania

6. Pytania

7. Pytania

8. Pytania

9. Pytania

10. Pytania

11. Pytania

12. Pytania

13. Pytania

14. Pytania

15. Pytania

16. Pytania

17. Pytania

18. Pytania

19. Pytania

20. Pytania

21. Pytania

22. Pytania

23. Pytania

24. Pytania

25. Pytania

26. Pytania

27. Pytania

28. Pytania

29. Pytania

30. Pytania

31. Pytania

32. Pytania