Sample questions include: Is the scope appropriate? Have all the appropriate processes within the cycle been identified? Have the risks and related control objectives been outlined for each process within the cycle? Have the specific fraud risks been identified for each process? Have you reviewed all flow charts and documentation? Is the documentation adequate to understand how a transaction flows through each process from start to finish?