CISA Certified Information Systems Auditor – Question0883

Which of the following is MOST important for an effective control self-assessment program?

A.
Determining the scope of the assessment
B. Evaluating changes to the risk environment
C. Understanding the business process
D. Performing detailed test procedures

Correct Answer: C