1. Define and discuss the Federal/Private "audit gap"
2. The COSO Framework describes components of internal control. Please list and describe these components.
3. Since the release of the COSO Framework, the ISACA has developed Control Objectives for Information Technology (COBIT) Framework. This provides a control standard for IT security and control practices. Please describe the main processes categories and the key processes within each category.
4. An agency's Performance and Accountability Report (PAR) is considered a primary source of planning information. Why is this? When are PARs due (in draft and in final)?